Normalizing LDAP Names

To ensure that duplicate user accounts are not created in Anzo if an LDAP distinguished name has both a lowercase and uppercase version, you can configure the system to normalize distinguished name strings so that values that differ only in capitalization are treated as the same value. Follow the steps below to normalize distinguished name strings.

  1. In the Administration application, expand the Servers menu and click Advanced Configuration. Click I understand and accept the risk.
  2. Search for the Anzo Enterprise Directory Connect bundle and view its details.
  3. Click the Services tab and expand the com.cambridgesemantics.anzo.virtualdirectory.VirtualDirectoryServer service.
  4. Click Add Property next to the service name. Anzo opens the Add Property dialog box.

  5. In the Name field, specify org.openanzo.security.ldap.normalizeDnStrings, and set the Value to LCASE if you want distinguished name values to be normalized to lowercase or UCASE if you want values to be normalized to uppercase. For example:

  6. Click Save to add the property to the service. Then restart Anzo to apply the configuration changes.

After making the service configuration change and restarting Anzo,any existing LDAP users or roles must be removed and then added to Anzo again.

Related Topics