Configures the address where the clients connect to. Possible values are:
original
Connect to the same address specified by the client.
nat
Perform a network address translation on the target address.
Must be used with the network element.
fix
Must be used with the address and port elements.
inband
Extract the address of the server from the username.
Must be used with the domains element.
Optional elements: exception_domains, dns_server, and dns_suffixes.
Must be used if selection is set to nat.
The target address in IP/prefix format. Example: "10.20.30.40/24".
address stringMust be used if selection is set to fix.
The IP address of the target server.
port intMust be used if selection is set to fix.
The port of the target server.
domains Top level listMust be used if selection is set to inband.
domain Top level item Lists the address ranges that are included in the connection policy. selection stringSpecifies if the target address range is provided as a domain or as an IP range. Possible values are:
address
The value of the target address is an IP range.
domain
The value of the target address is a domain.
The address range of the target server(s).
Use the selection element to specify if the address is an IP range, or a domain.
port int The port of the targer server(s). exception_domains Top level listCan only be used if selection is set to inband.
Lists the address ranges that are excluded from the connection policy.
domain Top level item Contains the excluded address range. selection stringSpecifies if the excluded address(es) are provided as a domain or as an IP range. Possible values are:
address
The value of the excluded address is an IP range.
domain
The value of the excluded address is a domain.
The excluded address(es).
Use the selection element to specify if the address is an IP range, or a domain.
port int The excluded port. dns_server stringCan only be used if selection is set to inband.
IP address or the hostname of the domain name server used to resolve the address of the target server.
dns_suffixes list, stringCan only be used if selection is set to inband.
If the clients do not include the domain name when addressing the server (for example they use username@server instead of username@server.example.com), SPS can automatically add domain information (for example example.com).
You can add multiple domain names. SPS attempts to resolve the target address by appending the domain names in the provided order, and uses the first successfully resolved address to establish the connection.
© 2025 One Identity LLC. ALL RIGHTS RESERVED. Termini di utilizzo Privacy Cookie Preference Center