LDAPURL

Parameters

ldap_url_value

Specifies the URL of one LDAP or LDAPS server, or the URLs of multiple LDAP or LDAPS servers. You can enter multiple values, with each URL value up to 1024 characters. The port number is optional and defaults to 389 for LDAP and to 636 for LDAPS. Each URL value must contain an LDAP server name. For example, the format of the server name is server1.storage.us.example.com and the LDAP port is 341.

LDAPS uses a Secure Sockets Layer (SSL) connection to send LDAP data. To define an LDAPS server address, specify a URL that begins with ldaps://.

The value of the LDAPURL option must conform to the following specifications:

• If you specify multiple URLs, each URL must be on a separate line.
• When you specify multiple LDAPURL server option values, they must be either all LDAPS addresses or all LDAP addresses.
• Each URL must begin with ldap:// or ldaps://.

  When ldap:// is specified, IBM Spectrum Protect supports LDAP connections that are secured with the standard LDAPv3 StartTLS operation, which establishes a secure Transport Layer Security (TLS) exchange on an existing LDAP connection. The LDAP Simple Bind operation that IBM Spectrum Protect uses does not protect the password when it is sent. A secure TLS connection is required to protect the password.