Group Search Base |
The directory that is used for group searches, such as
ou=employees,dc=mydomain,dc=com . |
Group Search Filter |
The LDAP filter expression that is used when you search for user
entries. The user name replaces the {1} variable in the search pattern and the
full user distinguished name (DN) replaces the {0} variable, for example,
(&(uniqueMember={0})(cn=BSO*)) . |
Group Name |
The name of the entry that contains the users' group names in the
directory entries that are returned by the group search. If this entry is not specified, no group
search runs. For example, enter cn . |
Search Group Subtree |
Subtrees (if any) are searched. If the item is not selected, the
search is limited to the group search base. |
Search For Containing Groups |
Perform additional lookups to find indirectly assigned groups.
This option may significantly increase the amount of time required to authenticate users. Consult
your LDAP administrators before enabling this option. |