Defined External Security Managers

Use this page to manage the pool of security managers available for Directory Server and enterprise servers to use for resolving security queries.

You can have multiple definitions for any given external security manager. Each definition may be used by Directory Server and one or more enterprise servers.

Click +ADD to add a new security manager. This opens the External Security Manager Configuration dialog box.

Name
Specify the name used to identify the security manager.
Module
Specify the module used to access an external security manager or to implement the security rules. If you specify it with a relative path (which includes no path) it is relative to $COBDIR/bin.
Enabled
Check this to enable this security manager. If it is disabled, it will be ignored by Directory Server and those enterprise servers that reference it.
Connection Path
If the module requires a connection string that tells it how to connect to the external security manager, specify it here. The information supplied in the string and its format depend on the module that you are using. See the documentation supplied with the module for more information.
Authorized ID
If the module requires credentials to connect to the external security manager, specify them here. As with the connection path, the content and format of these fields depend on the module that you are using. See the documentation supplied with the module for more information.
Password
The password for the authorized ID.
Description
Specify a description of the security manager.
Config
Specify any additional configuration settings that the module requires.
Cache limit
If the module has a configurable cache for holding responses from the security manager, enter its maximum size in kilobytes here.
Cache TTL
If the module has a configurable cache for holding responses from the security manager, enter the maximum time in seconds that an entry in the cache can be used to satisfy requests before the details must be required from the security manager.
Note: Enterprise Server and Directory Server also have their own configurable caches for security information. These are checked before submitting queries to the security manager module.

In the defined external security managers list, the Used By column displays the security manager lists that include this security manager.

To edit an external security manager, click Edit at the end of the row for the security manager you want to modify.

To remove an external security manager, click Remove at the end of the row for the security manager you want to remove.