You must add at least one Identity Map or Identity Search element to the <Canonicalizations> subsection of the <LdapConfig> to assist LDAP in finding users. The system considers the canonicalizations in the order they appear in the configuration file.
- Create the needed <Identity Map> and <Identity Search> elements. See the topics beginning with Working with Directory User Identification Options.
- Add the <Identity Map> and <Identity Search> elements to <Canonicalizations> section, for example:
<Canonicalizations> <IdentitySearch Ref="svc.div1root" Pattern="(.+)@td.example.com" Base="dc=td,dc=example,dc=com" Filter="(uid=${1})" DatabaseName="div1_${1}" BindName="dn:${result}"/> <IdentitySearch ... /> </Canonicalizations>