[prev in list] [next in list] [prev in thread] [next in thread]
List: forgerock-openam
Subject: [OpenAM] Attribute lists for LDAP user store
From: jt3518 () att ! com (THARP, JOSHUA L)
Date: 2012-08-31 16:26:02
Message-ID: 9514E6360AF2CB47A89090D3346364300AA9E4C2 () CAFRFD1MSGUSR9O ! ITServices ! sbc ! com
[Download RAW message or body]
Thanks Bernhard.
A follow-up if you don't mind...
Is there a resource that I can use to determine which of the object classes are \
required for the normal function of OpenAM and its authentication modules, or do I \
need to dig through the source code of each to determine that?
-----Original Message-----
From: openam-bounces@forgerock.org [mailto:openam-bounces at forgerock.org] On Behalf \
Of Bernhard Thalmayr
Sent: Monday, August 27, 2012 12:50 AM
To: openam at forgerock.org
Subject: Re: [OpenAM] Attribute lists for LDAP user store
Am 8/23/12 4:37 PM, schrieb THARP, JOSHUA L:
> If I allow OpenAM to load the LDAP schema in the user store it assigns
> a number of object classes to each user entry. Most of these fields I
> do not need for my installation. I am considering either using my own
> object class(es) for users or removing some that add attributes I
> don't need in order to make the entries as tight as possible.
>
> Will this introduce problems for me in OpenAM?
No at all ... the defaults shown when configuring a data store are 'proposals'.
>
> Is this kind of customization recommended?
I would say it's more then recommended ... it's best pratice to configure only the \
attributes/objectclasses needed.
>
> The primary motivation is to reduce the work required to integrate
> with an identity manager such as OpenIDM.
-Bernhard
>
> Thanks,
>
> Josh
>
>
>
> _______________________________________________
> OpenAM mailing list
> OpenAM at forgerock.org
> https://lists.forgerock.org/mailman/listinfo/openam
>
--
Painstaking Minds
IT-Consulting Bernhard Thalmayr
Herxheimer Str. 5, 83620 Vagen (Munich area), Germany
Tel: +49 (0)8062 7769174
Mobile: +49 (0)176 55060699
bernhard.thalmayr at painstakingminds.com - Solution Architect
This e-mail may contain confidential and/or privileged information.If you are not the \
intended recipient (or have received this email in error) please notify the sender \
immediately and delete this e-mail. Any unauthorized copying, disclosure or \
distribution of the material in this e-mail is strictly forbidden. \
_______________________________________________ OpenAM mailing list
OpenAM at forgerock.org
https://lists.forgerock.org/mailman/listinfo/openam
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic