PingDirectory

Proxy transformations

Proxy transformations are used to rewrite requests and responses as they pass through the PingDirectoryProxy server. Proxy data transformations are helpful for clients that use an old schema or that contain a hard-coded schema.

Use the PingDirectoryProxy server proxy transformations to:

  • Provide a distinghuished name (DN) and attribute mapping altering both requests to the server as well as responses from the server.

    For example, a client sends a request to o=example.com even though the directory server handling the request uses dc=example,dc=com. The PingDirectoryProxy server can transparently remap the request so that the server can process it and map it back to the original DN of the client request when the value is returned.

  • Alternatively, if a client tries to use the attribute userID, the PingDirectoryProxy server can map it to uid before sending the request on to the backend LDAP server. The PingDirectoryProxy server then remaps the response to userID when the value is returned.

  • Suppress a specified attribute so that it is never returned to clients. Also, it can cause the server to reject requests which target that particular attribute.

  • Prevent entries that match a given search filter from being returned to clients.

For more information about configuring proxy transformations, see Configuring proxy transformations.