Completing Connection Properties for Directory Services

You can import a number of properties from your directory service, most commonly from Microsoft Active Directory.

The following properties can be set when importing from a directory service.

Property Notes
Login

The account with which to connect to the directory service.

Note: Credentials are not required if the account is already a member of the target domain.
Password The password (if required) for the account connecting to the directory service.
LDAP PATH

The path to the LDAP directory entry. This is an empty string by default. The value of the path varies depending on the provider used.

Properties to load Comma-separated list of properties to load from the LDAP directory.
Filter

Define a filter to restrict the number of rows returned from the specified properties. The filter is defined using the LDAP syntax, as customized by the vendor for the directory service. For example, Active Directory (ADSI) queries have the following requirements:

  • The string must be in parenthesis
  • Expressions can use the relational operators <, <=, =, >=, > and the compound operators & and |.

For example, the following filter returns all objects of category user and class person with a non-blank email address: (&amp;(objectCategory=user)(objectClass=person)(mail=*))

Referral chasing

Defines how to handle referrals in the directory system. Possible values are:

  • All — Chase referrals of both subordinate and external types
  • External — (default value) Chase only external referrals
  • None — Never chase the referred-to server
  • Subordonate — Chase only referrals that are to a subordinate naming context in the directory tree.
Search scope

Sets the scope of the search. Possible values are:

  • Base — Limits the search to the base object, and only one object is returned
  • One Level — Search the immediate child objects of the base object, excluding the base object
  • SubTree — (default value) Search the whole subtree, including the base object and all its child objects.
Page size An integer value (default 10,000) to set the number of records returned per page in a paged search.
Server page time limit

An integer value to limit the number of seconds that the server will search for an page result. The default value (-1) means to wait indefinitely.

Server time limit

Limits the number of seconds that the server spends on an entire search (including all pages). The default value of -1 means that the server-determined default of 120 seconds will be enforced.

Size limit An integer value to set the maximum number of objects the server will return in a search. The default value is 0, which uses the server-determined default size of 1000 entries.
Client timeout

An integer value to set the maximum number of seconds that the client waits for the server to return results. The default value is -1 which means to wait indefinitely.

FlexNet Manager Suite (On-Premises)

2023 R2