LDAP-based group selection

Although LDAP (Lightweight Directory Access Protocol) is the name of a TCP/IP based protocol, it is commonly used to describe a set of distributed directory services. Like a database, a directory is a structured collection of records. z/OS® Explorer can use an LDAP server as a simple hierarchical database, where groups hold one or more members.

When using definitions in your LDAP server as selection mechanism (the LDAP value is specified for directives in pushtoclient.properties), z/OS Explorer verifies membership of the group names listed in Table 1 to determine which developer groups the user belongs to, and whether a user is allowed to reject updates.

The devgroup value matches the group name assigned to a specific group of developers. Note that the group name is visible on z/OS Explorer clients.

The sysname value matches the system name of the target system.

A user can select to bind a workspace to the default group for configuration updates if config.enabled in pushtoclient.properties is set to SAF or LDAP. If config.enabled is set to TRUE, the workspace is automatically bound to the default group.

A user can select to bind a workspace to the default group for product updates if product.enabled in pushtoclient.properties is set to SAF or LDAP. If product.enabled is set to TRUE, the workspace is automatically bound to the default group.