<privateSection>
It is possibly to specify configuration parameters for some data sources such as LDAP directories and databases in the UME data source configuration file. These parameters have a higher priority than the parameters specified in the UME properties.
The parameters specified in the data source configuration file only apply to the specified data source.
The tag used to specify these parameters is <privateSection>.
Allowed Parameters
If the implementation class of the data source is
com.sap.security.core.persistence.datasource.imp.LDAPPersistence
the following parameters can be set in <privateSection>.
· ume.ldap.access.default_switch
· ume.ldap.connection_pool.min_size
· ume.ldap.connection_pool.max_size
· ume.ldap.connection_pool.max_idle_connections
· ume.ldap.connection_pool.idle_time
· ume.ldap.connection_pool.max_wait_time
· ume.ldap.connection_pool.monitor_level
· ume.ldap.connection_pool.retrial
· ume.ldap.connection_pool.retrial_interval
· ume.ldap.connection_pool.release_check_interval
· ume.ldap.access.server_type
· ume.ldap.access.server_name
· ume.ldap.access.server_port
· ume.ldap.access.flat_group_hierachy
· ume.ldap.access.dynamic_groups
· ume.ldap.access.action_retrial
· ume.ldap.access.ssl
· ume.ldap.access.user
· ume.ldap.access.objectclass.user
· ume.ldap.access.auxiliary_objectclass.user
· ume.ldap.access.objectclass.uacc
· ume.ldap.access.auxiliary_objectclass.uacc
· ume.ldap.access.objectclass.grup
· ume.ldap.access.auxiliary_objectclass.grup
· ume.ldap.access.naming_attribute.user
· ume.ldap.access.auxiliary_naming_attribute.user
· ume.ldap.access.naming_attribute.uacc
· ume.ldap.access.auxiliary_naming_attribute.uacc
· ume.ldap.access.naming_attribute.grup
· ume.ldap.access.auxiliary_naming_attribute.grup
· ume.ldap.access.password
· ume.ldap.access.context_factory
· ume.ldap.access.authentication
· ume.ldap.access.user_as_account
· ume.ldap.access.base_path.user
· ume.ldap.access.base_path.grup
· ume.ldap.access.base_path.uacc
· ume.ldap.access.ssl_socket_factory
· check_credentials
· check_credentials.login_attributes
· check_credentials.certificate_attribute
If the implementation class of the data source is
com.sap.security.core.persistence.datasource.imp.R3Persistence
the following parameters can be set in <privateSection>.
· ume.r3.access.user_as_account
· check_credentials
If the implementation class of the data source is
com.sap.security.core.persistence.datasource.imp.R3RoleDataSource
the following parameters can be set in <privateSection>.
· ume.r3.roles.user_datasource_id
· ume.r3.roles.refresh_interval_mins
· ume.r3.roles.no_derived
If the implementation class of the data source is
com.sap.security.core.persistence.datasource.imp.DataBasePersistence
the following parameters can be set in <privateSection>.
· ume.db.table.principals_distributed_by_typeidentifier
· ume.db.connection_pool_type
· ume.db.connection_pool.j2ee.xatransactions_used
· ume.db.connection_pool.j2ee.is_unicode
· ume.db.connection_pool.j2ee.oracle_native_driver_used
· check_credentials
Example
<dataSource id="CORP_LDAP" |