Setting sensor configuration parameters

You can configure the behavior of the LDAP sensor by setting the configuration parameters.

To modify the sensor configuration, you can configure the following parameters:

tryInsecureConnection: Specifies whether to use insecure connection. The default value of this property is true.; If this parameter is set to true, in case when the sensor connects by using the LDAPS or StartTLS protocols and fails, the sensor tries to connect to LDAP by using a plain protocol. If this property is set to false, the sensor tries to connect by using the LDAPS or StartTLS protocols only.; To learn where to configure LDAP ports, see Configuring the collation.properties file entries.

bypassHostVerification: Specifies whether to bypass the host verification procedure. The default value of this property is true.; If this property is set to true and LDAP is discovered by using the StartTLS protocol, the TLS negotiation step bypasses the host verification procedure. The sensor accepts the certificates that are signed for a different host name or IP address of the target server that was provided in the scope used for the discovery. If this property is set to false, the sensor tries to run the TLS negotiation step by using IP address of the target host.