This section contains the settings you configure when you need to use an LDAP query to map the usernames from your audited sessions to the usernames in inWebo.
To look up the inWebo username of the user from an LDAP/Active Directory database, configure the [ldap] section of the SPS inWebo plugin. Typically, the SPS plugin queries the email address corresponding to the username from your LDAP or Active Directory database. For details on LDAP parameters, see [ldap].
If you configure both the append_domain parameter and the [ldap] section of the SPS inWebo plugin, SPS appends the @ character and the value of the append_domain parameter to the value retrieved from the LDAP database.
For other methods of mapping gateway usernames to inWebo usernames, see Mapping SPS usernames to inWebo identities.
[ldap] ldap_server_config=<SPS-LDAP-server-policy-name> filter=(&(cn={})(objectClass=inetOrgPerson)) user_attribute=CN
Type: | string |
Required: | no |
Default: | N/A |
Description: The name of a configured LDAP server policy in SPS. For details on configuring LDAP policies, see "Authenticating users to an LDAP server" in the Administration Guide.
Type: | string |
Required: | no |
Default: | (&(cn={})(objectClass=inetOrgPerson)) |
Description: The LDAP filter query that locates the user based on the gateway username. The plugin automatically replaces the {} characters with the gateway username from the session.
filter=(&(cn={})(objectClass=inetOrgPerson))
Type: | string |
Required: | no |
Default: | cn |
Description: The name of the LDAP attribute that contains the inWebo username.
© 2024 One Identity LLC. ALL RIGHTS RESERVED. 利用規約 プライバシー Cookie Preference Center