ConnectionType |
Specify how you want
Client Services Framework to discover the Active Directory. Enter one of the following values:
-
0: Use the Global Catalog (GC) or domain controller (DC) to discover the Active Directory server automatically. This is the default value.
-
1: Use LDAP.
Data type: REG_DWORD |
UseSecureConnection |
Specify whether
Client Services Framework encrypts usernames and passwords on the connection. Enter one of the following values:
-
0: Use encryption. This is the default value.
-
1: Do not use encryption.
Data type: REG_DWORD |
UseSSL |
Specify whether
Client Services Framework uses SSL to connect securely to the directory. Enter one of the following values:
-
0: Do not use SSL. This is the default value.
-
1: Use SSL.
Data type: REG_DWORD |
UseWindowsCredentials |
Specify whether
Client Services Framework uses credentials, that is, usernames and passwords, from Windows or from another source. Enter one of the following values:
-
0: Use credentials from a source other than Windows.
-
1: Use Windows credentials. This is the default value.
Data type: REG_DWORD |
ConnectionUsername |
If you choose to use credentials from a source other than Windows, specify the username to use when
Client Services Framework connects to the Active Directory.
The default is that this subkey name is not used. |
ConnectionPassword |
If you choose to use credentials from a source other than Windows, specify the password to use when
Client Services Framework connects to the Active Directory.
The default is that this subkey name is not used. |
BaseFilter |
Only use this subkey name if the object type that you want to retrieve with queries that you execute against Active Directory is not a user object. The default value is (objectCategory=person).
The following example base filter would exclude disabled users:
(&(objectCategory=person)(objectClass=user)( !(userAccountControl:1.2.840.113556.1.4.803:=2))
Note |
Remove the last bracket from all filters. This is the due to the way the filter is loaded. |
|
SearchTimeout |
Specify the timeout period for queries, in seconds. The default value is 5. |
PrimaryServerName |
Specify the FQDN or IP address of the primary server to connect to for directory access, if the server cannot be discovered by DNS.
The default is that this subkey name is not used. |
SecondaryServerName |
Specify the FQDN or IP address of the backup server to connect to for directory access, if the server that cannot be discovered by DNS.
The default is that this subkey name is not used. |
Port1 |
Specify the port of the primary server that cannot be discovered by DNS. |
Port2 |
Specify the port of the secondary server that cannot be discovered by DNS. |
SearchBase1, SearchBase2, SearchBase3, SearchBase4, SearchBase5 |
For performance reasons, you might need to specify a location in the Active Directory from which searches begin. If you need to do this, set this subkey name to be the value of the first searchable organizational unit (OU) in the tree. The default value is the root of the tree.
Specify any further search bases also. |
DisableSecondaryNumberLookups |
Specify whether users can search for the mobile, other, or home numbers of contacts, if the work number is not available.
Enter one of the following values:
-
0: Users can search for the mobile, other, or home numbers of contacts.
-
1: Users cannot search for the mobile, other, or home numbers of contacts.
The default is that this subkey name is not used. |
PhoneNumberMasks |
Set masks to use when users search for a phone number.
For example, if a user receives a call from +14085550100, but the number is stored in Active Directory as +(1) 408 555 0100, you can ensure that the contact is found if you set the following mask:
+1408|+(#) ### ### ####
There is no restriction on the length of a mask string, except that the length cannot exceed the size that is allowed in registry subkey names.
Typically, you do not need to use phone number masks if the phone numbers in your directory are in +E.164 format. |
UseWildcards |
Set this value to 1 if you want to enable wildcard searches for phone numbers in the LDAP.
If you set this key to 1, the speed of searches of the LDAP might be affected, particularly when the directory attributes that are searched are not indexed.
You can use phone number masks instead of wildcard searches.
Typically, you do not need to use wildcard searches if the phone numbers in your directory are in +E.164 format. |
UserSearchFields |
This value is used to specify the Active Directory fields to search when users search for contacts. Specify one or more of the following values separated by commas:
-
DisplayName
-
UserAccountName
-
FirstName
-
LastName
For example, the UserSearchFields key should be set to UserAccountName,FirstName if the administrator wants user contact searches to query the equivalent Active Directory fields. All of the above fields are searched if no value is specified.
Note |
The Active Directory fields searched for UserAccountName or FirstName values may be customized if the administrator wants to restrict searches to indexed fields. |
|