Skip to main content

The most recent patch for this version is 6.3.1.  Learn more  

LDAP Attribute Connector configuration

The LDAP Attribute Connector represents all the information an Authorization Service needs to fetch attributes from an LDAP directory.

Familiarity with LDAP and the ability to write LDAP search expressions are needed to properly configure an LDAP Attribute Connector.

The configuration has two parts:

  1. A general part specifying the client implementation to use, the location of the LDAP directory, and the authentication mechanism and account to use.

  2. An attribute-specific part that specifies the mapping, that is, which XACML attribute can be fetched and how to obtain it from the directory.

A sample XML-format configuration file can be found in the appendix XML Configuration. Similarly, the XML schema for this configuration can be found in the appendix XML Schema.