Page created: 6 Nov 2019
|
Page updated: 25 Mar 2020
If a user entry has a value for ds-authz-map-to-dn
whether it's
explicitly contained in the entry or only present via a virtual attribute, then that
will be used to specify the alternate authorization identity for the user.
Otherwise, the default authorization identity (as indicated via the
authz-dn
configuration property) will be used to determine the
alternate authorization identity.