Field | Enter |
Domain type | Choose Notes. |
Domain name | The name of the Domino domain associated with the directory. If the directory isn't associated with a Domino domain because you created it manually rather than through server setup, make up a unique domain name for it. |
Company name | (Optional) The name of the company associated with this directory. Multiple Directory Assistance documents can use the same company name. |
Search order | (Optional) A number affecting the order in which servers search this directory relative to other directories configured in the directory assistance database. For more information, see the topic "How naming rules relate to directory searcher orders." |
Make this domain available to | Choose one or both:
- "Notes Clients and Internet Authentication/Authorization"
- "LDAP Clients"
Choose "Notes Clients and Internet Authentication/Authorization" to use the directory for Notes mail addressing, Internet client authentication (including LDAP client authentication), or to look up the members of groups for database authorization. For group authorization, you must also enable "Group Authorization" (see below). By default, the option is enabled. To prevent servers from using the directory for these services, do not choose this option.
If the domain specified in the "Domain name" field is the same Domino domain (the primary domain) of the servers that use directory assistance, the servers use the directory for these three services automatically, even if you do not choose this option. If you are using a configuration directory server, you can then make this option equal to the primary address book domain and have the secondary address book available through directory assistance.
Choose "LDAP Clients" to enable the LDAP service running on servers to use the directory for search and write operation when processing LDAP requests. To use the directory for LDAP write operations, you must also enable the directory for write operations in the "All Servers" Configuration Settings document. By default, the option is enabled. To prevent the LDAP service from using the directory for search and write operation, do not choose this option. |
Group Authorization | Choose one:
- Yes to search the members of groups in the directory when authorizing database access. You must also select "Make this domain available to: Notes Clients and Internet Authentication/Authorization."
- No (default) to prevent searching the members of groups in the directory when authorizing database access.
You do not have to enable a rule that is "Trusted for Credentials."
Enable this option in only one Directory Assistance document, Notes or LDAP, in the directory assistance database.
If the domain specified in the "Domain name" field is the same Domino domain (the primary domain) of the servers that use directory assistance, the servers use the directory to look up groups for database authorization automatically, even if you choose No for this option.
For more information, see the topic "Directory assistance and group lookups for database authorization." |
Use exclusively for group authorization or credential authentication | Note This item is only visible if Group Authorization has been enabled for this directory, or if at least one rule has "Trusted" enabled.
Choose Yes to allow directory assistance to use this directory exclusively for Group Authorization or Credential Authentication. Enabling this will minimize the number of non-authentication and non-authorization lookups to this directory.
For more information, see the topic "Limiting directories to authentication-only lookups." |
Enabled | Choose Yes to enable directory assistance for this directory.
Note You can enable or disable directory assistance from the main view of the Directory Assistance database by selecting the directory assistance record for the directory and, on the toolbar, click Enable/Disable. |
Attribute to be used as name in an SSO token | The default option for this field is LTPA_UserNm.
For more information about name mapping in the LTPA token used for single sign-on, see the topic "Configuring user name mappings in the SSO LTPA token." |