Define Address Book settings for a domain

For information on LDAP Address Book sources, refer to LDAP source.

Note The Address Book Settings pane is only displayed if the Address Book feature is enabled (the value of the AddressBook.Enabled configuration option is set to true).

The following topics define Address Book LDAP searches and attribute mappings for a domain:

Related topics:

Define Address Book LDAP searches for a domain

Use the following instructions to configure LDAP search settings for the Address Book feature.

Note All search operations performed via this source will be case insensitive and wild card searches will be supported at the end of the phrase; for example, (|(displayName=string*)(ou=string*)(mail=string*)).
  1. If you do not have the New LDAP Domain page open, select Authentication > LDAP Domains and click New Domain open the New LDAP Domain page.
  2. In the Address Book Settings pane under LDAP Searches, complete the following fields:
  3. Field Description Valid values and notes
    Base DN Define the base DN for the searches

    A valid DN, such as,

    OU=Sales, DC=ldaps1, DC=Example, DC=com

    Additional search query

    Enter an LDAP query to specify the selection criteria for Address Book.

    The search behavior depends on the current selection of the Use only additional search query checkbox:

    • If selected, SecureTransport executes the exact search query entered in the Additional search query field.
    • If not selected, SecureTransport applies pre-defined filters that manage the LDAP server responses to the search query, entered in the Additional search query field, and executes the final query.

    Get all user entries with an email attribute and a surname equal to "smith":

    &(sn=smith)(objectClass=user)(email=*)

    Get all entries:

    objectclass=*

  4. Click Save.

Define Address Book attribute mappings for a domain

Note Address Book supports only unique group names, so the LDAP server should not have two group entries with exact same value of the attribute which is mapped to displayName.
Note Address Book classifies an entry as user or group based on the objectClass and objectCategory attribute values.

To map an Address Book attribute to a schema:

  1. If you do not have the New LDAP Domain page open, select Authentication > LDAP Domains and click New Domain open the New LDAP Domain page.
  2. Under Address Book Attributes List, for each Address Book attribute that will be mapped from an LDAP domain attribute, select Map to Schema to enable an attribute mapping.

You can modify a default attribute mapping.

  1. Click the Edit icon (Edit) in the Edit column.
  2. Type the new value in the LDAP Attribute Name column.
  3. Click the Save icon (Save) in the Edit column.

You can define a mapping for a custom Address Book attribute.

  1. Click New Attribute.
  2. SecureTransport adds a line to the Attributes List.
  3. Type the Description, Entity Attribute Name, and LDAP Attribute Name.
  4. Click the Save icon (Save) in the Edit column.
  5. Select Map to Schema to enable the mapping.

To delete a custom attribute mapping, click X in the first column of the table.

Related Links