362
Novell eDirectory 8.8 Administration Guide
no
vd
ocx (
E
NU)
01
F
ebr
ua
ry
200
6
These filter attributes (referralIncludeFilter and referralExcludeFilter) are multi-valued. You can
choose as many matching filters as you needed. You can set the values of these attributes either
through ConsoleOne or LDIF.
13.8.4 Example Scenarios
• To make an LDAP server return only referrals with the IP address 1.2.X.Y where X = {0 to
255} and Y = {0 to 255} and exclude all others, enter the following:
referralIncludeFilter = { 1.2 }
• To make an LDAP server return referral, that exclude all the referrals that match IP address
164.99.X.Y, where X is not equal to 100 and match 164.99.100.Y, enter the following:
referralIncludeFilter = { 164.99.100., "*"}
referralExcludeFilter = { 164.99. }
Here, even though the IP address 164.99.100.Y matches referralExcludeFilter, since these IP
addresses have more matched fields, these referrals will be returned to the LDAP clients.
NOTE: While specifying a partial IP address, the trailing “.” can be omitted.
• To make an LDAP server return only clear text port referrals and drop SSL port referrals, enter
the following:
referralIncludeFilter = { "ldap://" }
OR
referralExcludeFilter = { "ldaps://" }
• To make an LDAP server return from a set of IP addresses and drop all other IP address
referrals, enter the following:
referralIncludeFilter = { 1.2.3.4, 2.3.4.5:389, 3.4.5.6:636, ldaps://4.5.6.7 }
referralExcludeFilter = { "*" }
NOTE: Here, referralExcludeFilter is not required. Any populated referralIncludeFilter implies
to exclude all others.
• There are two filters, as follows:
referralIncludeFilter = { 1.2.3.4 }
referralExcludeFilter = { 2.3.4.5 }
If the referral 3.4.5.6 comes, it will be excluded as it does not match the referralIncludeFilter,
even though it does not match the referralExcludeFilter also.
1.2
# matches all IP addresses of 1.2.x.y
1.2.3
# matches all IP addresses of 1.2.3.y
ldap:// or ldap://*
# matches all the clear text port LDAP referrals
ldaps:// or ldap://*
# matches all the ssl port LDAP referrals
*
# matches all
ldaps://5.6.7.8:636
# matches for SSL port 636 on IP addresses 5.6.7.8
Examples
Description
Summary of Contents for EDIRECTORY 8.8 - GUIDE
Page 4: ...novdocx ENU 01 February 2006...
Page 16: ...16 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 68: ...68 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 90: ...90 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 116: ...116 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 128: ...128 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 184: ...184 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 249: ...250 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 307: ...308 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 333: ...334 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 371: ...372 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 439: ...440 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 519: ...520 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 529: ...530 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 555: ...556 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...