The fully qualified distinguished name of the directory container object that contains ipNetwork entries.
An ipNetwork entry specifies an IP address or a range of IP addresses. When you configure an ipNetwork object as a member of an:
- Internal Network Group object, the included IP addresses are subject to any policy in which the Network Group object is a member.
- External Network Group object, the included IP addresses are exempt from any policy in which the Network Group object is a member.
Valid Settings
- “” (default), that is, no FQDN is specified.
- The FQDN of a bindable directory object that contains ipNetwork entries.
Editing Guidelines
- The LdapNetworkBaseFQDN property is not configurable in a mechanism. Configure the LdapNetworkBaseFQDN property as part of the <LdapConfig> section in the TDGSS configuration file, immediately following the <Mechanisms> section. See Editing Configuration Files.
- Edit this property on the database.
- You must uniquely identify the object that contains ipNetwork entries if you assign security policies by IP address.
For details on configuring LDAP properties to configure security policy, see Configuring Security Policies in the TdgssUserConfigFile.xml.