Connection tab

Use this tab to input default logon parameters: Directory Server host name or IP address, port, user name and password.

The settings, specified on this tab, can be overridden (using the Alternate logon dialog box) by any search request if it requires connection to another server or using other credentials. These parameters are used by default for connection and authentication to Directory Server both during configuration and at run time.

Option Description
Activate

Activate the component according to a condition. For more information, see Conditional fields under Appendices.

Directory server group

Host name

Enter a server host name or IP address of the Directory Server. Active Directory server address is usually the same as the Domain Controller address.

To support Kerberos authentication, the server name must be specified by name. If you use IP address, the component uses NTLM authentication.

Port

Enter port number for non-secure LDAP connection. Default LDAP port number is 389.

Use SSL

Select this check box to use SSL (Secure Sockets Layer) to secure the LDAP connection.

Ignore certificate errors

Select this check box to ignore errors when the user connects to the server using an invalid SSL server certificate.

If this check box is selected, the component will skip validating server certificates and try to establish connection. If this check box is cleared and an SSL server certificate is invalid, the component will fail to connect to a server, and documents will be rejected at run time.

SSL-port

Enter a Directory Server port number to use for secure (SSL) connection. Default secure port number is 636.

User authentication group

Anonymous logon

Select this check box to use anonymous connection to the LDAP server. Anonymous authorization does not require a password. This option should be switched off in most cases, because the Directory Server does not usually allow an anonymous client to obtain user's information.

User name

Enter user name in FQDN or UPN format, the FDN (AD style) user name is not accepted. For example, the Active Directory server accepts user name in the form "Domain\login name". Any Directory Server also accepts FDN of the directory user object.

Click the browse button (...) to find a directory user by choosing the user from the list in the Select User from Directory dialog box. This dialog box displays all user objects returned by the Directory Server.

Obtain password via RRT

Select this check box to obtain password at run time from another component by RRT replacement. This field is ignored when the component connects to the Directory Server during the configuration. The Password RRT field becomes enabled and the Password field becomes disabled.

Password

Enter the fixed password which the component uses for authorization at run time and during the configuration process. This password is stored encrypted. When the component connects to the Directory Server during the configuration it uses this field, even if the Obtain password via RRT check box is selected.

Password RRT

Enter the RRT which the component should use at run time to get the password for the authorization. Previous component should replace this RRT for the actual password. This field is ignored when the component connects to the Directory Server during the configuration, even if the Obtain password via RRT check box is selected, because RRT replacement cannot be performed.

This field supports and returns values for encrypted by restricted RRTs. For more information, see Encrypted Field RRTs.