A local security policy is contained in a service and applies only to that service. For example:
<Services> <Service Id="domain1" ... /> <Service Id="domain2" ... /> <Service Id="domain3" ... /> <Policy ..."/> </Policy> </Service>
If the TDGSSUserConfigFile.xml already contains <Service> elements configured for LDAP authentication or authorization (see Configuring LDAP to Use Multiple Directory Services), you can add any necessary <Policy> elements to the existing Service elements.
Attribute Name | Required | Description |
---|---|---|
LdapPolicyFQDN | Yes | Locates the policy container |
LdapNetworkBaseFQDN | No | Locates the container for ipNetwork entries. If LdapNetworkBaseFQDN is not provided, the system uses the value in the LdapBaseFQDN attribute for the containing service. If no value is present for either LdapBaseFQDN or LdapNetworkBaseFQDN, the system does not use the client IP address for determining the applicable QOP policy or options. |