Chat now with support
Chat with Support

Defender 6.5 - Administration Guide

Getting started Managing Defender objects in Active Directory Configuring security tokens Securing VPN access Securing Web sites Securing Windows-based computers Defender Management Portal (Web interface) Securing PAM-enabled services Delegating Defender roles, tasks, and functions Automating administrative tasks Administrative templates Integration with Active Roles Push Notifications Appendices
Appendix A: Enabling diagnostic logging Appendix B: Troubleshooting common authentication issues Appendix C: Troubleshooting DIGIPASS token issues Appendix D: Defender classes and attributes in Active Directory Appendix E: Defender Event Log messages Appendix F: Defender Client SDK Appendix G: Defender Web Service API

Appendix D: Defender classes and attributes in Active Directory

This appendix provides information about the following Microsoft Active Directory schema object classes and attributes:

Classes defined by Defender

The following is the list of Microsoft Active Directory schema classes that are specifically defined by Defender. Each class has been listed in accordance with the Active Directory schema definitions format as used in the MSDN documentation (for further details, see information on Active Directory Schema published in MSDN at http://msdn.microsoft.com/en-us/library/ms675085(VS.85).aspx). Only attributes that are specific to Defender have been listed; all other attributes are as per the MSDN documentation provided for each respective subclass.

In this section:

defender-tokenClass

  • CN  defender-tokenClass
  • Ldap-Display-Name  defender-tokenClass
  • Governs-Id  1.2.840.113556.1.8000.1267.1.1
  • Object-Category  1
  • Subclass of  Leaf
  • Possible Superiors  Organizational-Unit
  • Update Privilege  Domain or Defender administrator
  • Update Frequency  Records of this type are updated each time a Defender token is created, deleted, or modified.
  • Description  A record of this type is created for each token defined to Defender.

This class contains the following attributes:

 

Table 38:  defender-tokenClass attributes

Attribute

Mandatory

defender-id

False

defender-tokenData

False

defender-tokenDate

False

defender-tokenType

False

 defender-tokenUsersDNs

False

defender-danClass

  • CN  defender-danClass
  • Ldap-Display-Name  defender-danClass
  • Governs-Id  1.2.840.113556.1.8000.1267.1.2
  • Object-Category  1
  • Subclass of  Leaf
  • Possible Superiors  Organizational-Unit
  • Update Privilege  Domain or Defender administrator
  • Update Frequency  Records of this type are updated each time an Access Node is created, deleted, or modified.
  • Description  A record of this type is created for each Access Node defined to Defender.

This class contains the following attributes:

 

Table 39:

defender-danClass attributes

Attribute

Mandatory

defender-danKey

False

defender-danMembers

False

defender-danType

False

defender-dssDNs

False

defender-policy

False

defender-radiusPayloadDn

False

defender-radiusPayloadInherit

False

defender-subnetMask

False

defender-userIdType

False

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating