The GWIA supports the Lightweight Directory Access Protocol (LDAP) standard. With LDAP enabled, the GroupWise GWIA functions as an LDAP server, allowing LDAP queries for GroupWise user information contained in the GroupWise Address Book. You can also configure which GroupWise fields (Given Name, Last Name, Phone, and E-Mail) are visible to an LDAP query.
IMPORTANT:For users to perform LDAP searches for GroupWise user information, they need to define the GroupWise Address Book as an LDAP directory in their email client. When doing so, they use the GWIA’s DNS hostname or IP address for the LDAP server address
To enable and configure LDAP services for mail client access:
In ConsoleOne, right-click the GWIA object, then click
.Click
to display the LDAP Settings page.Fill in the fields:
Enable LDAP Service: Turn on this option to allow LDAP queries. LDAP service is off by default. This setting corresponds to the GWIA’s --ldap switch.
Number of LDAP Threads: The --ldapthrd switch.
setting lets you specify the maximum number of threads that process LDAP queries. The default is 10 threads. This setting corresponds with the GWIA’sLDAP Context: Use this option to limit the directory context in which the LDAP server searches. For example, if you want to limit LDAP searches to the Novell organization container located under the United States country container, enter O=Novell,C=US. This setting corresponds with the GWIA’s --ldapcntxt switch.
If you enter an LDAP context, you must make sure that users, when defining the directory in their email client, enter the same context (using the identical text you did) in the Search Base or Search Root field.
You can leave the settings empty in both locations.
LDAP Referral URL: Use this option to define a secondary LDAP server to which you can refer an LDAP query if the query fails to find a user or address in your GroupWise system. For this option to work, the requesting Web browser must be able to track referral URLs. This setting corresponds with the GWIA’s --ldaprefurl switch.
Continue with the next section, Configuring Public Access.
After you have enabled LDAP services, you can configure which GroupWise fields are visible to LDAP searches and also set search restrictions. By default, no fields are visible.
If the GWIA object’s property page is not open, right-click the GWIA object, then click
.Click
.Fill in the fields:
LDAP Defaults: Select one of the following defaults for public access:
or . If you select the GroupWise fields (in the lists) default to for an LDAP search. If you select , the GroupWise fields default to .Visible Fields: You can override the default visibility for a GroupWise field (
, , , and ) by selecting the field and then clicking the appropriate visibility button ( or ). For example, if you have selected as the LDAP default, but you don’t want users’ telephone numbers to be visible, you can mark the field as .Number of Entries to Return: Select the maximum number of entries to return. The default is 100.
How Many Seconds to Search: Select the maximum amount of time (in seconds) you want the GWIA to spend searching. The default is 120 seconds.
Idle Minutes before Timeout: Specify the number of minutes to allow the search to continue without finding a matching address entry. The default is 5 minutes.
Click
to save the changes.