LDAP server properties
LDAP server properties define the properties that are used by the directory server in which IBM Verify Identity Governance stores data.
LDAP server properties page defines the properties that are used the directory server.
LDAP server properties
enrole.ldapserver.root
-
Specifies the top-level entry node of the directory server data structure (
dc=domain control
). Use the ldapConfig utility to modify this value.This value is specified during installation of IBM Verify Identity Governance.
Example (default):
enrole.ldapserver.root=dc=com
enrole.ldapserver.home
-
Do not modify this property key and value.
Specifies the location of the system configuration information in the directory server.
Example (default):
enrole.ldapserver.home=ou=itim
enrole.ldapserver.agelimit
-
Do not change this property key and value unless you are a qualified administrator. Use therunConfig utility to modify this value.
Specifies the number of days that an object remains in the recycle bin before it can be deleted when the cleanup script is started. The recycle bin age limit protects objects in the recycle bin from cleanup scripts for the specified length of time.
Cleanup scripts can remove only those objects that are older than the age limit setting. If the age limit setting is 62 days (default), only objects in the recycle bin for more than 62 days can be deleted by starting the cleanup script.
Example (default):
enrole.ldapserver.agelimit=62
enrole.ldapserver.ditlayout
-
Do not modify this property key and value.
Specifies the Java™ class that defines the structure of the data that is stored in the directory server.
Example (default, flat structure):
enrole.ldapserver.ditlayout=com.ibm.itim.dataservices.dit.itim. FlatHashedLayout
enrole.ldap.provider
-
Example (default):
enrole.ldap.provider=IBM