| Property Name |
Type |
Display Name (ENU) |
Description (ENU) |
Key |
Max Length |
Min Length |
Case Sensitive |
| System.Entity: |
 DisplayName |
string |
Display Name |
Display name of monitoring object. |
false | 256 |
0 |
False |
| ComTrade.Citrix.NetScaler.Appliance.Component.Base: |
| HostID |
string |
MPNS Key |
The NetScaler Management Pack key value. It is combination of host id, serial number and NetScaler IP address. |
false | 256 |
0 |
False |
| IPAddress |
string |
Device IP Address |
The NetScaler Device IP Address. |
false | 256 |
0 |
False |
 DeviceKey |
string |
Device Key |
The key property of the device node in System Center Operations Manager. |
true | 256 |
0 |
False |
| ComTrade.Citrix.NetScaler.Appliance.Component.Authentication.Server.Base: |
| name |
string |
Name |
The authentication server name. |
true | 256 |
0 |
False |
| type |
string |
Authentication Server Type |
The authentication server type. |
false | 256 |
0 |
False |
| ComTrade.Citrix.NetScaler.Appliance.Component.Authentication.Server.LDAP: |
| serverip |
string |
IP Address |
The IP address of the LDAP server. |
false | 256 |
0 |
False |
| serverport |
string |
Port |
The port number on which the LDAP server is running. |
false | 256 |
0 |
False |
| authtimeout |
string |
Time-out (seconds) |
The maximum number of seconds the system will wait for a response from the LDAP server. |
false | 256 |
0 |
False |
| ldapbase |
string |
Base DN (location of users) |
The base, or node where the ldapsearch should start. If the LDAP server is running locally, the default value of base is dc=netscaler, dc=com. |
false | 256 |
0 |
False |
| ldapbinddn |
string |
Administrator Bind DN |
The full distinguished name that is used to bind to the LDAP server. The default value of the bind DN is cn=Manager,dc=netscaler,dc=com. |
false | 256 |
0 |
False |
| ldaploginname |
string |
Server Logon Name Attribute |
The name attribute used by the system to query the external LDAP server or an Active Directory. |
false | 256 |
0 |
False |
| searchfilter |
string |
Search Filter |
The string to be combined with the default LDAP user search string to form the value. For example, vpnallowed=true with ldaploginame "samaccount" and the user-supplied username "bob" would yield the LDAP search string "(&a(vpnallowed=true)(samaccount=bob)". |
false | 256 |
0 |
False |
| groupattrname |
string |
Group Attribute |
The Attribute name for group extraction from the LDAP server. |
false | 256 |
0 |
False |
| subattributename |
string |
Sub Attribute Name |
The Sub-Attribute name for group extraction from the LDAP server. |
false | 256 |
0 |
False |
| sectype |
string |
Security Type |
This option indicates whether communication between the system and the authentication server should be encrypted. The following values are allowed:PLAINTEXT: No encryption required.TLS: Communicate using TLS protocol.SSL: Communicate using SSL Protocol. |
false | 256 |
0 |
False |
| ssonameattribute |
string |
SSO Name Attribute |
The attribute used by the system to query the external LDAP server, or an Active Directory, for an alternate username to be used in Single Sign-On. |
false | 256 |
0 |
False |
| authentication |
string |
Authentication |
Disable authentication. If disabled this LDAP action will return authentication success if the user is found. This should only be used for authorization group extraction and in conjunction with other authentication methods. The other authentication methods should be bound to a primary list or flagged as secondary. |
false | 256 |
0 |
False |
| requireuser |
string |
User Required |
Setting this option to NO allows failed user searches to be considered authentication successes. If you set require user to NO, you may only configure it with authentication DISABLED. |
false | 256 |
0 |
False |
| passwdchange |
string |
Allow Password Change |
Enabling this option does not block password change request. Disabling would block password change request. |
false | 256 |
0 |
False |
| nestedgroupextraction |
string |
Nested Group Extraction |
Setting this option to ON enables the nested group extraction feature where the system queries the external LDAP server to determine if a group belongs to another group. |
false | 256 |
0 |
False |
| maxnestinglevel |
string |
Maximum Nesting Level |
If NESTED GROUP EXTRACTION is set to ON, this option specifies the level up to which ancestors of a group/subgroup will be determined. |
false | 256 |
0 |
False |
| groupnameidentifier |
string |
Group Name Identifier |
The group-attribute used by the system to uniquely identify a group in LDAP/AD. |
false | 256 |
0 |
False |
| groupsearchattribute |
string |
Group Search Attribute |
This option specifies the attribute that will be used to determine group-membership of a 'group' |
false | 256 |
0 |
False |
| groupsearchsubattribute |
string |
Group Search Sub-Attribute |
This option specifies the sub-attribute that will be used to determine group-membership of a 'group' |
false | 256 |
0 |
False |
| groupsearchfilter |
string |
Group Search Filter |
The string to be combined with the default LDAP group search string to form the value. For example, vpnallowed=true with groupIdentifier "samaccount" and the groupname "g1" would yield the LDAP search string "(&(vpnallowed=true)(samaccount=g1)". |
false | 256 |
0 |
False |
Citrix NetScaler Appliance LDAP Authentication Server
Home
Show References: