Configuring LDAP parameters in the ARS.CFG file
When you bind to an LDAP server, you can use anonymous binds or non-anonymous binds. With anonymous binds, you can gain access to the LDAP server without logging on. With non-anonymous binds, you must log on to the LDAP server to access the server. In both cases, you must provide a user ID and password after a connection is established with the LDAP server before you can access a particular record from the LDAP server.
About this task
The following table indicates the parameters in the ARS.CFG file that must be set depending on whether you use anonymous binds or non-anonymous binds.
Settings for anonymous binds | Settings for non-anonymous binds | |
---|---|---|
ARS_LDAP_SERVER | Required | Required |
ARS_LDAP_PORT | Optional | Optional |
ARS_LDAP_BASE_DN | Required | Required |
ARS_LDAP_BIND_ATTRIBUTE | Required | Required |
ARS_LDAP_MAPPED_ATTRIBUTE | Required | Required |
ARS_LDAP_ALLOW_ANONYMOUS | TRUE | FALSE |
ARS_LDAP_BIND_MESSAGES_FILE | Optional | Optional |
The ARS_LDAP_BIND_MESSAGES_FILE parameter identifies the bind message file, such as the ARSLDAP.INI file.
For detailed descriptions of the LDAP parameters, see LDAP parameters.