Defender 5.9.3 - Administration Guide

Getting started Managing Defender objects in Active Directory Configuring security tokens Securing VPN access Securing Web sites Securing Windows-based computers Defender Management Portal (Web interface) Securing PAM-enabled services Delegating Defender roles, tasks, and functions Automating administrative tasks Administrative templates Integration with Active Roles Integration with Cloud Access Manager Appendices
Appendix A: Enabling diagnostic logging Appendix B: Troubleshooting common authentication issues Appendix C: Troubleshooting DIGIPASS token issues Appendix D: Defender classes and attributes in Active Directory Appendix E: Defender Event Log messages Appendix F: Defender Client SDK Appendix G: Defender Web Service API

Attributes defined by Defender

Attributes defined by Defender

The following is the list of Microsoft Active Directory schema attributes that are defined by Defender. Each attribute has been listed in accordance with the Active Directory schema definitions format as used in the MSDN documentation (for further details, see information on Active Directory Schema published in MSDN at http://msdn.microsoft.com/en-us/library/ms675085(VS.85).aspx). Only attributes that are specific to Defender have been listed; all other attributes are as per the MSDN documentation.

In this section:

defender-tokenType

defender-tokenType

  • CN  defender-tokenType
  • Ldap-Display-Name  defender-tokenType
  • Attribute-Id  1.2.840.113556.1.8000.1267.2.1
  • Link-Id  -
  • Range-Lower  -
  • Range-Upper  -
  • Size  -
  • Syntax  Integer
  • Is-Single-Valued  True
  • Is-Indexed  True
  • In Global Catalog  False
  • Search-Flags  0x00000003
  • Update Privilege  Domain or Defender administrator
  • Update Frequency  Whenever a token or token license is created.
  • Description  For a token, contains the major token type. For a token license, contains the license type.
  • Classes used in  defender-tokenClass, defender-tokenLicenseClass

defender-tokenData

defender-tokenData

  • CN  defender-tokenData
  • Ldap-Display-Name  defender-tokenData
  • Attribute-Id  1.2.840.113556.1.8000.1267.2.2
  • Link-Id  -
  • Range-Lower  -
  • Range-Upper  -
  • Size  -
  • Syntax  String(Octet)
  • Is-Single-Valued  False
  • Is-Indexed  False
  • In Global Catalog  False
  • Search-Flags  0x00000000
  • Update Privilege  Domain or Defender administrator
  • Update Frequency  Whenever token data is added or modified.
  • Description  For a token contains the token seed and other information required for authentication. For licenses contains information on the license type and—in the case of a token license—the counts of used and available tokens.
  • Classes used in  defender-tokenClass, defender-tokenLicenseClass, defender-licenseClass

defender-userTokenData

defender-userTokenData

  • CN  defender-userTokenData
  • Ldap-Display-Name  defender-userTokenData
  • Attribute-Id  1.2.840.113556.1.8000.1267.2.2.1
  • Link-Id  11962
  • Range-Lower  -
  • Range-Upper  -
  • Size  -
  • Syntax  Object(DN-Binary)
  • Is-Single-Valued  False
  • Is-Indexed  False
  • In Global Catalog  True
  • Search-Flags  0x00000000
  • Update Privilege  Domain or Defender administrator
  • Update Frequency  Whenever a Token is assigned to or removed from a user.
  • Description  Contains the user specific data associated with a token, together with the tokens' distinguished name.
  • Classes used in  User
Documentos relacionados