Apache Server Information
- Module Name: util_ldap.c
- Content handlers: yes
- Configuration Phase Participation:
Create Directory Config, Create Server Config, Merge Server Configs
- Request Phase Participation:
Content Handlers
- Module Directives:
- LDAPSharedCacheSize - Set the size of the shared memory cache (in bytes). Use 0 to disable the shared memory cache. (default: 500000)
- LDAPSharedCacheFile - Set the file name for the shared memory cache.
- LDAPCacheEntries - Set the maximum number of entries that are possible in the LDAP search cache. Use 0 or -1 to disable the search cache (default: 1024)
- LDAPCacheTTL - Set the maximum time (in seconds) that an item can be cached in the LDAP search cache. Use 0 for no limit. (default 600)
- LDAPOpCacheEntries - Set the maximum number of entries that are possible in the LDAP compare cache. Use 0 or -1 to disable the compare cache (default: 1024)
- LDAPOpCacheTTL - Set the maximum time (in seconds) that an item is cached in the LDAP operation cache. Use 0 for no limit. (default: 600)
- LDAPTrustedGlobalCert - Takes three arguments; the first argument is the cert type of the second argument, one of CA_DER, CA_BASE64, CA_CERT7_DB, CA_SECMOD, CERT_DER, CERT_BASE64, CERT_KEY3_DB, CERT_NICKNAME, KEY_DER, or KEY_BASE64. The second argument specifes the file and/or directory containing the trusted CA certificates (and global client certs for Netware) used to validate the LDAP server. The third argument is an optional passphrase if applicable.
- LDAPTrustedClientCert - Takes three arguments: the first argument is the certificate type of the second argument, one of CA_DER, CA_BASE64, CA_CERT7_DB, CA_SECMOD, CERT_DER, CERT_BASE64, CERT_KEY3_DB, CERT_NICKNAME, KEY_DER, or KEY_BASE64. The second argument specifies the file and/or directory containing the client certificate, or certificate ID used to validate this LDAP client. The third argument is an optional passphrase if applicable.
- LDAPTrustedMode - Specify the type of security that should be applied to an LDAP connection. One of; NONE, SSL or STARTTLS.
- LDAPVerifyServerCert - Set to 'ON' requires that the server certificate be verified before a secure LDAP connection can be establish. Default 'ON'
- LDAPConnectionTimeout - Specify the LDAP socket connection timeout in seconds (default: 10)
- LDAPReferrals - Choose whether referrals are chased ['ON'|'OFF'|'DEFAULT']. Default 'ON'
- LDAPReferralHopLimit - Limit the number of referral hops that LDAP can follow. (Integer value, Consult LDAP SDK documentation for applicability and defaults
- LDAPLibraryDebug - Enable debugging in LDAP SDK (Default: off, values: SDK specific
- LDAPTimeout - Specify the LDAP bind/search timeout in seconds (0 = no limit). Default: 60
- LDAPConnectionPoolTTL - Specify the maximum amount of time a bound connection can sit idle and still be considered valid for reuse(0 = no pool, -1 = no limit, n = time in seconds). Default: -1
- LDAPRetries - Specify the number of times a failed LDAP operation should be retried (0 = no retries). Default: 3
- LDAPRetryDelay - Specify the delay between retries of a failed LDAP operation (0 = no delay). Default: 0
- Current Configuration: