Configuring TRITON Settings > Setting user directory information
|
1.
|
Select your user directory from the User directory server list.
|
2.
|
Enter the IP address or host name to identify the directory server.
|
3.
|
Enter the Port that Websense software should use to communicate with the directory.
|
4.
|
Specify the User distinguished name and Password for the administrative account Websense software should use to retrieve user name and path information from the directory.
|
|
Enter the account details as a single string in the User distinguished name field. You can use the format "CN=user, DC=domain" or, if your organization uses Active Directory, "domain\username".
|
5.
|
Click Test Connection to confirm that the directory exists at the specified IP address or name and port number, and that the specified account can connect to it.
|
6.
|
Enter the Root naming context that the TRITON console should use to search for user information. This is required for generic LDAP directories, Lotus Notes/Domino, and Oracle Directory Service, and optional for Active Directory and Novell eDirectory. If you supply a value, it must be a valid context in your domain.
|
7.
|
If your LDAP schema includes nested groups, mark Perform additional nested group search.
|
8.
|
To encrypt communication with the directory service, mark Use SSL encryption.
|
|
Email attribute: The attribute name used to locate a user's email address in LDAP entries. The default is mail.
|
|
User logon ID attribute: The attribute name used to locate a user's logon ID in LDAP entries.
|
|
User logon filter: The filter to apply when searching for user details at logon. This string must contain the %uid token, which is then replaced with the user name entered by the user when logging on.
|
|
User lookup filter: The filter used to find users for import on the Add Network Account page. You can enter %query in this field as a placeholder, and then click Refine search on the Add Network Account page to enter a new context for finding network users.
|
|
Group object class (optional): The LDAP object class that represents a group. The default is group.
|
|
Group Properties: Specify whether your directory schema uses the memberOf attribute. If it does, in the Group attribute field enter the attribute used to reference the groups that the user is a member of.
|
11.
|
Click OK.
|
Configuring TRITON Settings > Setting user directory information
|