Configuring LDAP Access to Directory Data with the C-Web Interface
The SRC software stores subscriber, service, persistent login, policy, router, and cached subscriber profiles and session data in a directory. The SAE uses LDAP to store and retrieve the data.
If you do not store data in the local directory, you need to configure the LDAP connections to the directories in which the data is stored. You can also select the filter that the SAE uses to search for subscriptions in the directory and directory eventing parameters for data stored in the directory.
The tasks to configure LDAP access to directory data are:
- (Optional) Configuring Access Through LDAPS to Service and Subscriber Data
- Configuring Access to Subscriber Data
- Configuring Access to Service Data
- Configuring Access to Policy Data
- Configuring Access to the Persistent Login Cache
- Configuring the Location of Network Device Data
- Enabling Automatic Discovery of Changes in SAE Configuration Data
- Setting the Timeout and Number of Events for SAE Directory Eventing
Configuring Access Through LDAPS to Service and Subscriber Data
You can secure connections between a router and an external directory that contains service data or subscriber data, and you can configure the router to use LDAPS when it connects to the same data source.
To use LDAPS to secure connections between a router and an external directory:
The Service Data pane appears.
- To configure subscriber data, click Configure, expand Shared>SAE>LDAP, and then click Subscriber Data.
The Subscriber Data pane appears.
- Click Create.
- Select ldaps from the Secured Ldap Protocol list.
- In the router initialization script you specify the directory context.
The /opt/UMC/sae/lib/poolPublisher.py script and the /opt/UMC/sae/lib/IorPublisher.py script provide examples of how to configure a directory context, For example, from the /opt/UMC/sae/lib/IorPublisher.py script:
dirContext = Ssp.registry.get('ServiceDataSource.component').getContext()In addition, you can change the directory context.
For information about how to use InitialDirContext class or the DirContext class to specify directory context, see:
http://java.sun.com/j2se/1.4.2/docs/api/javax/naming/directory/ InitialDirContext.htmlhttp://java.sun.com/j2se/1.4.2/docs/api/javax/naming/directory/DirContext.htmlConfiguring Access to Subscriber Data
To configure SAE access to subscriber data:
The Subscriber Data pane appears.
- Click Create, enter information as described in the Help text in the main pane, and then click Apply.
Configuring Access to Service Data
To configure SAE access to service data:
The Service Data pane appears.
- Click Create, enter information as described in the Help text in the main pane, and then click Apply.
Configuring Access to Policy Data
To configure SAE access to subscriber data:
- Click Create, enter information as described in the Help text in the main pane, and then click Apply.
Configuring Access to the Persistent Login Cache
To configure SAE access to persistent login cache data:
The Persistent Login Cache pane appears.
- Click Create, enter information as described in the Help text in the main pane, and then click Apply.
Configuring the Location of Network Device Data
To configure SAE access to network device data:
The Network Device Data pane appears.
Enabling Automatic Discovery of Changes in SAE Configuration Data
To enable automatic discovery of changes in SAE configuration data:
- Click Create, enable the Enable Directory Eventing box as described in the Help text in the main pane, and then click Apply.
Setting the Timeout and Number of Events for SAE Directory Eventing
To configure the directory eventing timeout and the number of simultaneous events that the SAE can receive from the directory:
The Directory Eventing pane appears.
- Click Create, enter information as described in the Help text in the main pane, and then click Apply.
Related Topics