Table of Contents
Advertisement
The Query property can be used by the following classes or methods derived from these classes:
BasicClass
PasswordClass
ProtectedBasicClass
ProtectedPasswordClass
When you specify a Query property, you must also modify the login page to prompt the user for the
correct information. If you want users to enter their email address instead of the username, you need
to modify the login form to prompt the user for an email address. If you want to prompt the users for
their username and their email address, you need to add the email prompt to the login page. The
Property
allows you to specify a custom login page. For information on creating a custom login
page, see
Section 1.3, "Customizing the Identity Server Login Page," on page
For example, to query for the user's UID attribute to use for the username, you would specify the
following query:
Property Name: Query
Property Value:
(objectclass=person)(uid=%Ecom_User_ID%)
The values are case sensitive. The name of the property must be Query with an initial capital. The
variable is used in the default
%Ecom_User_ID%
support the Query property. The variable is replaced with the value the user enters for their
username, and the LDAP query is sent to the user store to see if the user's attribute value matches
the entered value. You can specify any attribute for the Query that is defined in your user store for
the object class of person and that is used to identify the user.
The Query you define for the BasicClass and the ProtectedBasicClass needs to use an attribute that
your users define as their username. The PasswordClass and the ProtectedPasswordClass do not
have this requirement. They also support the JSP property which allows you to specify a custom
and have it prompt for other attributes that can be used for login.
login.jsp
For example, you can define the following Query to prompt the users for their email address. This is
in addition to their username.
Property Name: Query
Property Value:
(&(objectclass=person)(email=%EMail Value%))
The %EMail Value% must match the variable in the custom login page that is filled in when the
users enter their credentials. The objectclass of person must be a valid object class in the LDAP user
store. The email attribute must be a valid attribute of the person class.
JSP Property
The JSP property allows you to specify a custom login page. This property can be used with the
following classes or methods derived from these classes:
PasswordClass
ProtectedPasswordClass
The Property Name is JSP and the Property Value is the filename of the login page you customized
without the
extension of the file. The Property Value cannot contain
.jsp
for the username in the four classes that
login.jsp
JSP
30.
in its name.
nidp
Configuring Local Authentication
91
Advertisement
Table of Contents
Troubleshooting
Related Manuals for Novell ACCESS MANAGER 3.1 SP1 - IDENTITY SERVER
Related Products for Novell ACCESS MANAGER 3.1 SP1 - IDENTITY SERVER
- NOVELL ACCESS MANAGER 3.1 SP2 - README 2010
- NOVELL ACCESS MANAGER 3.1 SP2 BETA 1 - SCENARIOS 2009
- NOVELL ACCESS MANAGER 3.1 SP1 - AGENT GUIDE
- NOVELL ACCESS MANAGER 3.1 SP2 - SSL VPN USER GUIDE 2010
- Novell Access Manager 3.1 SP 1
- Novell Access Manager 3.1 SP2 Beta 1
- Novell Access Manager 3.1 SP 2
- NOVELL CLIENT LOGIN EXTENSION 3.7 - ADMINISTRATION
- NOVELL IDENTITY ASSURANCE SOLUTION 3.0.2 - ADMINISTRATION
- NOVELL IDENTITY MANAGER 3.6.1 - STAGING BEST PRACTICES GUIDE 2010
- NOVELL IDENTITY MANAGER 3.6.1 - NULL SERVICE AND LOOPBACK SERVICE DRIVERS
- NOVELL IDENTITY MANAGER 3.6.1 - JOBS GUIDE
- NOVELL IDENTITY MANAGER 3.6.1 - TASK SERVICE DRIVER
- NOVELL IFOLDER 3 - ADMINISTRATION
- NOVELL POLICIES IN IMANAGER 3.6.1 - 06-05-2009
- NOVELL POLICY IN DESIGNER 3.5 - 09-18-2009