Class LdapPasswordChangeOptions

Represents the options of this provider.

Inheritance

System.Object

LdapPasswordChangeOptions

Implements

IAppSettings

Inherited Members

System.Object.ToString()

System.Object.Equals(System.Object)

System.Object.Equals(System.Object, System.Object)

System.Object.ReferenceEquals(System.Object, System.Object)

System.Object.GetHashCode()

System.Object.GetType()

System.Object.MemberwiseClone()

Namespace: Zyborg.PassCore.PasswordProvider.LDAP

Syntax

public class LdapPasswordChangeOptions : IAppSettings

Properties

DefaultDomain

Gets or sets the default domain.

Declaration

public string DefaultDomain { get; set; }

Property Value

Type	Description
System.String	The default domain.

HideUserNotFound

Gets or sets a value indicating whether [hide user not found].

Declaration

public bool HideUserNotFound { get; set; }

Property Value

Type	Description
System.Boolean	`true` if [hide user not found]; otherwise, `false`.

Remarks

When the user cannot be located in the directory, you can either expose that error, or hide it and treat like an arbitrary bad credential -- in order to prevent brute force attack to discover the presence or absence of a username.

LdapChangePasswordWithDelAdd

Gets or sets a value indicating whether [LDAP change password with delete add].

Declaration

public bool LdapChangePasswordWithDelAdd { get; set; }

Property Value

Type	Description
System.Boolean	`true` if [LDAP change password with delete add]; otherwise, `false`.

LdapHostnames

Gets or sets the LDAP hostnames.

Declaration

public string[] LdapHostnames { get; set; }

Property Value

Type	Description
System.String[]	The LDAP hostnames.

Remarks

Required, one or more hostnames or IP addresses which expose an LDAP/LDAPS service endpoint that will be connected to. If more than one host is specified, then each will be tried in turn until a successful, secure connection is established.

LdapIgnoreTlsErrors

Gets or sets a value indicating whether [LDAP ignore TLS errors].

Declaration

public bool LdapIgnoreTlsErrors { get; set; }

Property Value

Type	Description
System.Boolean	`true` if [LDAP ignore TLS errors]; otherwise, `false`.

Remarks

Optional, if 'true', then server certificates will be ignored for expiration or common name mismatch. Note this is a SUPERSET of the LdapIgnoreTlsValidation options, so you don't have to set both.

LdapIgnoreTlsValidation

Gets or sets a value indicating whether [LDAP ignore TLS validation].

Declaration

public bool LdapIgnoreTlsValidation { get; set; }

Property Value

Type	Description
System.Boolean	`true` if [LDAP ignore TLS validation]; otherwise, `false`.

Remarks

Optional, if 'true', then server certificates will be accepted regardless of being signed by a trusted CA or intermediary (e.g. self-signed).

LdapPassword

Gets or sets the LDAP password.

Declaration

public string LdapPassword { get; set; }

Property Value

Type	Description
System.String	The LDAP password.

LdapPort

Gets or sets the LDAP port.

Declaration

public int LdapPort { get; set; }

Property Value

Type	Description
System.Int32	The LDAP port.

Remarks

Optional, defaults to 636 -- the default port for LDAPS (i.e. LDAP over TLS). A common alternative is to use the default LDAP port, 389, however this port typically is not-secured and requires the "StartTLS" flag enabled.

LdapSearchBase

Gets or sets the LDAP search base.

Declaration

public string LdapSearchBase { get; set; }

Property Value

Type	Description
System.String	The LDAP search base.

Remarks

Distinguished Name (DN) of the base OU from which to search for the target users by their username (SAM Account Name).

LdapSearchFilter

Gets or sets the LDAP search filter.

Declaration

public string LdapSearchFilter { get; set; }

Property Value

Type	Description
System.String	The LDAP search filter.

LdapSecureSocketLayer

Gets or sets a value indicating whether [LDAP uses SSL].

Declaration

public bool LdapSecureSocketLayer { get; set; }

Property Value

Type	Description
System.Boolean	`true` if [LDAP uses SSL]; otherwise, `false`.

Remarks

Optional, if 'true', then the specified port is using SSL encryption. By default this should set to 'true' when using port 636.

LdapStartTls

Gets or sets a value indicating whether [LDAP start TLS].

Declaration

public bool LdapStartTls { get; set; }

Property Value

Type	Description
System.Boolean	`true` if [LDAP start TLS]; otherwise, `false`.

Remarks

Optional, if 'true', then the specified port is a non-secured port by default and requires the use of the "StartTLS" command over LDAP to enable TLS.

LdapUsername

Gets or sets the LDAP username.

Declaration

public string LdapUsername { get; set; }

Property Value

Type	Description
System.String	The LDAP username.

Implements

IAppSettings

Class LdapPasswordChangeOptions

Inheritance

Implements

Inherited Members

Namespace: Zyborg.PassCore.PasswordProvider.LDAP

Syntax

Properties

DefaultDomain

Declaration

Property Value

HideUserNotFound

Declaration

Property Value

Remarks

LdapChangePasswordWithDelAdd

Declaration

Property Value

LdapHostnames

Declaration

Property Value

Remarks

LdapIgnoreTlsErrors

Declaration

Property Value

Remarks

LdapIgnoreTlsValidation

Declaration

Property Value

Remarks

LdapPassword

Declaration

Property Value

LdapPort

Declaration

Property Value

Remarks

LdapSearchBase

Declaration

Property Value

Remarks

LdapSearchFilter

Declaration

Property Value

LdapSecureSocketLayer

Declaration

Property Value

Remarks

LdapStartTls

Declaration

Property Value

Remarks

LdapUsername

Declaration

Property Value

Implements

See Also

Comments