This page last changed on Sep 03, 2008 by smaddox.
This page provides configuration notes for Apple OS X Open Directory, in relation to Configuring an LDAP Directory Connector.
Crowd supports read-only connections to Apple OS X Open Directory services.
 | Crowd's Apple Open Directory support is read-only
Currently, you cannot add or update user details or group details in a Crowd-connected Apple OS X Open Directory server. Users will not be able to change their passwords from Crowd or from Crowd-connected applications. |
Screenshot: Connector — Apple OS X Open Directory
Attribute |
Description |
Connector |
The directory connector to use when communicating with the directory server. |
URL |
The connection URL to use when connecting to the directory server, e.g.: ldap://localhost:389, or port 639 for SSL. |
Secure SSL |
Specifies whether the connection to the directory server is an SSL connection. |
Use Node Referrals |
Specifies whether to use the JNDI lookup java.naming.referral option. |
Use Nested Groups |
Not applicable. The RFC 2307 schema does not support nesting of groups, so we do not have support for nested groups in Apple OS X Open Directory. |
Use Paged Results |
Specifies whether to use the LDAP control extension for simple paged results option. Retrieves chunks of data rather than all of the results at once. |
Base DN |
The root distinguished name to use when running queries against the directory server, e.g.: o=acmecorp,c=com. |
User DN |
The distinguished name of the user that Crowd will use when connecting to the directory server. |
Password |
The password that Crowd will use when connecting to the directory server. |
Group Relationships
Crowd will check both the gidNumber and the memberUid attributes to determine if a user is a member of a group. The name of the gidNumber attribute is not configurable — Crowd will always use this attribute to determine membership.
The RFC 2307 schema does not support nesting of groups, so we do not have support for nested groups in the Posix schema.
Next Step
Go back to Configuring an LDAP Directory Connector.
RELATED TOPICS
Crowd Documentation
|