Chatta subito con l'assistenza
Chat con il supporto

Active Roles 8.2 - Web Interface Configuration Guide

Introduction to the Web Interface Deploying the Web Interface Getting started with the Web Interface Web Interface Basics Performing Management Tasks Using Approval Workflow Customizing the Web Interface
About Web Interface customization Web Interface customization terms Configuring Web Interface menus Configuring Web Interface forms Web Interface customization examples Web Interface global settings Customizing the Web Interface Navigation bar Customizing the Web Interface Home page Configuring Web Interface for enhanced security
Default Commands

Entry for an attribute of DN syntax

The auto entries for attributes of Object (DS-DN) syntax have certain features that are specific to only this category of entries. In this topic, for the sake of brevity, such entries are referred to as DN entries.

Values of an attribute of Object (DS-DN) syntax are strings, each specifying the distinguished name (DN) of a certain directory object. For attributes with this syntax, Active Directory handles attribute values as references to the object identified by the DN and automatically updates the value if the object is moved or renamed. Examples of such attributes are “member”, “managedBy” and “manager”.

A DN entry retrieves DN values from the attribute, looks up for the objects that are identified by the DN values, and displays a list of those objects. By default, the list contains the following information about each object:

  • Name: The value of the name attribute.

  • Description: The value of the description attribute.

  • Object type: The value of the objectClass attribute.

You can configure the list to display values of other attributes: open the Properties page for the entry (see Viewing or modifying a Web Interface entry), and click the Advanced tab. Then, modify the list of names in the Columns box as required. You can type LDAP display names of attributes in the Columns box, separating them by commas, or you can click the button next to the Columns box and select attributes. The list provided by the entry will include one column per each attribute you specify, with each column showing the values of the respective attribute.

A DN entry provides the ability to make changes to the managed attribute, that is, to add or remove DN values from the attribute. For this purpose, a DN entry supplements the list of objects with the Add and Remove controls. The Remove control deletes list entries, consequently removing the respective DN values from the managed attribute. The Add control uses the Select Object dialog box for selecting objects. The entries representing the selected objects are then added to the list, with the DN of each object being eventually appended to the values in the managed attribute.

It is possible to customize the Select Object dialog box that is used by the Add control in a DN entry. For this purpose, a DN entry provides a number of options. These options can be found on the Advanced tab of the Properties page for a DN entry (for instructions on how to access the Properties page, see Viewing or modifying a Web Interface entry):

  • Populate list view when the dialog box opens: When turned off, this option prevents a delay in opening the Select Object dialog box. Since populating the list view in the dialog box implies running a query against the directory service (which may be a lengthy operation), the ability to open the dialog box without initially populating the list view increases responsiveness of the user interface. The user can type and check object names in the dialog box instead of selecting objects from the list. Alternatively, the user can manually start populating the list view by clicking a link in the Select Object dialog box.

  • Display the “Find in” field: When turned on, this option enables the users to view the Find in setting. With this option turned off, the Find in setting is not displayed in the Select Object dialog box.

  • Allow user to change the “Find in” setting: This option prevents the default Find in setting from being modified by the user. With this option turned off, the Find in setting cannot be changed in the Select Object dialog box.

  • Display the “Object name” field: When turned on, this option enables the user to type the names of objects to select instead of clicking objects in the list view in the Select Object dialog box. With this option turned off, the user is forced to make a selection from the list.

  • “Find in” default setting: You can specify a certain container as the default location of the objects for selecting. Click the button next to this option in order to select a container, or type in the distinguished name of a container. The Select Object dialog box will open with that container substituted in the Find in field.

  • LDAP search filter: When populating the list view, the Select Object dialog box applies this setting to the Find in container in order to retrieve the objects that match the filter specified. The list view then displays the objects returned by the query based on this search filter. You should set up a filter string in accordance with LDAP syntax rules.

  • Scope of query: When populating the list view, the Select Object dialog box uses this setting to qualify the query. Select one of the following:

    • Base search: The search filter is applied to the Find in object only. When attribute scope query (ASQ) is used, the search filter is applied to the objects listed in a certain attribute of the Find in object.

    • One-level search: The search filter is applied to the immediate children of the Find in object. The list view is populated with the immediate child objects that match the search filter.

    • Subtree search: The search filter is applied to the Find in object as well as to all objects that exist below it in the directory tree. The list view is populated with all the objects that match the search filter.

  • Use attribute scope query (ASQ): When turned on, this option causes the Select Object dialog box to populate the list view with objects that are listed in a certain attribute of the Find in object (target attribute). The LDAP display name of the target attribute must be supplied in the Attribute to search by using ASQ field.

    The target attribute must be an attribute that stores distinguished names, such as “member” or “managedBy”. The search is performed against the objects that are identified by the distinguished names found in the target attribute. For example, if the Find in object is a group and “member” is specified as the target attribute, then the search will be performed against all objects that are members of the group and the list view will be populated with the members of the group that match the search filter.

Configuring Web Interface commands

"Commands" in a Web Interface menu perform a specific task, such as displaying property pages for a directory object, searching for objects that meet certain conditions or assigning a certain value to a certain attribute of a directory object. You can select a command, and customize its action or associated pages.

To select a Web Interface command for customization

  1. On the Web Interface home page, click Customization, then click Customization Tasks.

    Alternatively, on the Navigation bar, expand Customization, then click Directory Objects.

  2. In the list of menus on the List Existing Menus page, click the name of the menu that includes the command you want to select.

  3. In the list of commands, click the name of the command.

Viewing or modifying the properties of a Web Interface command

Active Roles administrators can modify the properties of Web Interface commands. The properties of a command depend on the command type (Form Task, Page View Task, Search Task, or Set Attribute Task).

All commands have common properties, such as the name and description of the command. In addition, each command has a number of properties determined by the command type. As such:

  • The Page View Task-specific properties identify the page to display.

  • The Search Task-specific properties determine search criteria and configuration of the list of search results.

  • The Set Attribute Task-specific properties specify the attributes to set and the value to assign to a specific command.

For more information on these command types, see Properties of a Web Interface command.

To view or modify the properties of a Web Interface command

  1. On the Web Interface home page, click Customization, then click Customization Tasks.

  2. In the list of menus on the List Existing Menus page, click the name of the menu that includes the desired command.

  3. In the list of commands found on the menu, click the name of the desired command.

  4. Modify the properties of the command, if needed, and click Save.

  5. Click Reload to publish your changes.

Creating or selecting a Web Interface form for a command

Form Task commands are always associated with a form, and are used to open that form. When configuring a Form Task command, you can either create a new form for it, or associate an existing form.

To create a new Web Interface form and associate it with a command

  1. On the Web Interface home page, click Customization, then click Customization Tasks.

  2. Select a command of the Form Task type.

  3. In the right pane, click Link with New Form.

  4. Select the type of the form to create:

    • Edit Properties: Creates a form used to view or modify object properties.

    • New Object: Creates a form used to create new objects.

    • Rename: Creates a form used to rename objects.

  5. Click Next.

  6. Specify the general properties of the form, such as the name and description.

  7. If you have selected New Object as the type of the form, select the type of objects you want to create by using the form.

  8. Click Finish.

  9. Click Reload to publish your changes.

You can also associate a command with a form that already exists in the configuration of the Web Interface site.

To associate a command with an existing Web Interface form

  1. On the Web Interface home page, click Customization, then click Customization Tasks.

  2. Select a command of the Form Task type.

  3. In the right pane, click Link with Existing Form.

  4. In the list of existing forms, click the form you want to link with the command.

    NOTE: The list of existing forms includes only the forms that are applicable to the object type the command is intended for. For example, when you select a command from the menu for the User object type, the list only includes the forms that are applicable to User objects.

    TIP: Consider the following when assigning a form to a command:

    • Instead of linking a different form to a command, you can modify the form that is already associated with the command.

    • If necessary, you can configure a command so as to have no form associated with it: in the list on the Link with Existing Form page, click <no assigned form>, then click Save.

  5. To publish your changes, click Save, then Reload.

Related Documents

The document was helpful.

Seleziona valutazione

I easily found the information I needed.

Seleziona valutazione