The
is used to classify incoming client connections and route requests to
workflows.
ds-cfg-network-group
top
Specifies the set of quality of service (QoS) policies enforced by
the
.
All client connections belonging to the
will comply with its policies.
cn=QoS Policies
Indicates whether the
is enabled for use in the server.
If a
is not enabled then its workflows will not be accessible when
processing operations.
ds-cfg-enabled
Specifies the priority for this .
A client connection is first compared against the
with the lowest priority. If the client connection does not match
its connection criteria, then the client connection is compared against
the
with next lowest priority, and so on. If no
is selected then the client connection is rejected.
ds-cfg-priority
Specifies a set of workflows which should be accessible from this
.
No workflows will be accessible.
The referenced workflows must be enabled.
ds-cfg-workflow
Specifies a set of allowed authorization methods that clients
must use in order to establish connections to this
.
Changes to this property take effect immediately and do not
interfere with connections that may have already been
established.
All authorization methods are allowed.
Unauthorized clients.
Clients who bind using simple authentication (name and password).
Clients who bind using SASL/external certificate based
authentication.
ds-cfg-allowed-auth-method
Specifies a set of allowed supported protocols that clients
must use in order to establish connections to this
.
Changes to this property take effect immediately and do not
interfere with connections that may have already been
established.
All supported protocols are allowed.
Clients using LDAP are allowed.
Clients using LDAPS are allowed.
ds-cfg-allowed-protocol
Specifies a set of bind DN patterns that determine the
clients that are allowed to establish connections to this
.
Valid bind DN filters are strings composed of zero or more
wildcards. A double wildcard ** replaces one or more RDN
components (as in uid=dmiller,**,dc=example,dc=com). A simple
wildcard * replaces either a whole RDN, or a whole type, or a
value substring (as in uid=bj*,ou=people,dc=example,dc=com).
Changes to this property take effect immediately and do not
interfere with connections that may have already been
established.
All bind DNs are allowed.
ds-cfg-allowed-bind-dn
Specifies whether or not a secured client connection
is required in order for clients to establish connections
to this .
Changes to this property take effect immediately and do not
interfere with connections that may have already been
established.
false
ds-cfg-is-security-mandatory