The xyldap.cfg configuration file
This example is a self-documented sample xyldap.cfg file delivered with the Contenta software that can be edited and used, or referenced for information about the settings and values.
See the Settings, Default, and Description for the xyldap.cfg File for explanation of the file’s contents and an description of additional names and values that can be set.
Example
LDAP configuration file, xyldap.cfg when using Active Directory and/or multiple LDAP servers.
# This is an example configuration file for the Active Directory LDAP server.
# You must edit this file before using LDAP authentication from Contenta.
#
# Flags description:
#
# Single LDAP server
#
# ldap_host : hostname of the LDAP server - no default
#
# ldap_port : port number of the LDAP server - defaults to 389 or 636
# depends on ldap_ssl setting
#
# ldap_base_dn : base DN in LDAP - no default
#
# Multiple LDAP servers:
#
# ldap_host.[id] : hostname of the LDAP server - no default
# ldap_port.[id] : port number of the LDAP server - defaults to 389 or 636
# depends on ldap_ssl setting
# ldap_base_dn.[id] : base DN in LDAP - no default
#
# ldap_authentication : the type of authentication that used on the LDAP server
# defaults to LDAP_AUTH_SIMPLE
#
# ldap_ssl : indicates whether to use ssl for communication with the LDAP server
# defaults to false
#
#
# ldap_find_user_by_attr: finds and authenticate LDAP user by specified attribute.
# principal account should be set for this search.
# defaults to false
#
#
# user_dn_suffix.[id] : DN suffix for the LDAP user
# user_name_attr.[id] : The name of the attribute that contains LDAP user name
# For example, if user DN is
# "cn=Manager,ou=Management,dc=xyenterprise,dc=com",
# "user_dn_suffix.[id]" should be set to
# "ou=Management,dc=xyenterprise,dc=com" and
# "user_name_attr.[id]" should be set to "cn".
#
# It’s allowed to have more than one user_dn_suffix -
# user_dn_suffix.1, user_dn_suffix.2 ... user_dn_suffix.N
# The "user_name_attr.[id]" should be set for each
# "user_dn_suffix.[id]". The "id" must be the same for each
# pair of "user_dn_suffix" and "user_name_attr".
# Contenta will check them all. See Example below
#
# is_contenta_user_check : check if the user is a valid Contenta user.
# potential values are TRUE or FALSE
# defaults to FALSE
#
# is_contenta_user_attr : name of the attribute that indicates whether the user
# is a valid Contenta user.
# This attribute has to have Boolean type - TRUE/FALSE
# defaults to FALSE
#
# contenta_login_name_check : check for the Contenta login name.
# potential values are TRUE or FALSE.
# defaults to FALSE
#
# contenta_login_name_check_sysadmin_only : check for susadmin name only
# potential values are TRUE or FALSE.
# defaults to FALSE
# if this flag sets to true, Contenta will check the
# contenta_login_name_attr attribute. If the value of the
# attribute is set to "sysadmin" a user will be treated as sysadmin.
# If the value is set to something else or does not exist
# it will be ignored and a name typed in Contenta will be used
# as a user login name.
#
# contenta_login_name_attr : name of the attribute that contains
# Contenta login name.This attribute will be checked if
# "contenta_login_name_check" is set to TRUE
# no default
#
# this is a way to specify a single entry for LDAP host/port
ldap_host : global.sdl.corp
ldap_port :
ldap_base_dn : DC=global,DC=sdl,DC=corp
# this is a way to specify mutiple hosts/ports/base_dns
# ldap_host.1 : global.sdl.corp
# ldap_port.1 : 389
# ldap_base_dn.1 : DC=global,DC=sdl,DC=corp
# ldap_host.2 : ad1.xyenterprise.com
# ldap_port.2 : 389
# ldap_base_dn.2 : DC=xyenterprise,DC=com
# When not using Active Directory
# edit and uncomment the next two lines
# ldap_principal_dn: cn=Manager,ou=People,dc=global, dc=com
# certdbpath: path to Contenta_home/bin directory
ldap_authentication : LDAP_AUTH_SIMPLE
ldap_ssl : false
ldap_find_user_by_attr: true
user_dn_suffix.1 : DC=global,DC=sdl,DC=corp
user_name_attr.1 : sAMAccountName
user_dn_suffix.2 : OU=users,OU=XyEngineering,DC=xyenterprise,DC=com
user_name_attr.2 : sAMAccountName
contenta_login_name_check : true
contenta_login_name_check_sysadmin_only: true
contenta_login_name_attr : description
is_contenta_user_check : false
is_contenta_user_attr: isContentAUser