Sun Java System logo     Online Help
Sun Java System Directory Proxy Server 5 2004Q2

Network Group Search View Scope Tab

Directory Proxy Server network groups describe how to identify an LDAP client, and the restrictions to enforce for clients that match that group. Clients are initially identified into a group based on the network address from which they connect. They may change their group after a successful bind.

Network groups are tested in the descending order of priority, specified by their placement in the Network Group window. In this window, groups on the bottom of the list have less priority than those towards the top. If no groups are found to match a client, the client's request will be rejected. There must be at least one group entry in the configuration specification.

Clients are identified to belong to this network group based on their IP address and/or domain name.

Group name. Enter the group name that specifies the name of the group. This value must be unique within the set of groups. This value must be present as it forms the RDN of entries of this class.

Enable. By default, this option is selected for you. Deselect it to disable a group in a configuration. For a group to be part of Directory Proxy Server configuration, this option must be selected.

The following options specify the maximum scope that a client may specify in a search request.

The default, if this attribute is not present, is to permit all search scopes.

Permit all search scopes. By default, this option is enable permitting all search scopes by a client.

Only `base' search scope is permitted. Enable this option only to permit base search scope.

Only `base' and `one level' searches are permitted. Enable this option only to permit base and one level searches.



Copyright 2004 Sun Microsystems, Inc. All rights reserved.