ldap_servers for MariaDB Xpand
This page is part of MariaDB's Documentation.
The parent of this page is: System Variables for MariaDB Xpand
Topics on this page:
Overview
In 23.09:
Comma-separated list of LDAP servers, each of the form 'protocol://hostname[:port]'. If multiple servers are specified, each node will round-robin its LDAP queries among the list.
In 6.1, 6.0, 5.3:
Not present
See also: System Variables for MariaDB Xpand 23.09, in 6.1, in 6.0, and in 5.3
USAGE
The ldap_servers
system variable can be set by executing SET GLOBAL
:
SET GLOBAL ldap_servers = true;
Using SET GLOBAL
to set the value of a global variable in Xpand causes a change that will persist on restart.
DETAILS
The ldap_servers
system variable defines a comma-separated list of LDAP servers, each of the form '<protocol>://<hostname>[:<port>]'
. If multiple servers are specified, each node will round-robin its LDAP queries among the list.
Allowed protocol values are ldap://
and ldaps://
When using ldaps://
, take care that the LDAP server's hostname in this global variable matches the Common Name (CN) in the LDAP server's TLS certificate.
A mismatch of names over ldaps://
will prevent Xpand from establishing a connection to the LDAP server. One realistic way this could occur is by using a domain name in the LDAP server's certificate, but the corresponding IP address in this global variable.
If you are using self-signed or privately signed certificates, then it is possible to use IP addresses. However, you must consistently use the same IP address in both this global variable and also when generating the LDAP server's certificate.
SYNONYMS
SCHEMA
PARAMETERS
SKYSQL
PRIVILEGES
EXAMPLES
In this example each Xpand node will round-robin its LDAP queries between LDAP server's ldap1.example.com
over ldap://
and ldap2.example.com
over ldaps://
. Both LDAP servers must present the same directory structure.
SET GLOBAL ldap_servers = 'ldap://ldap1.example.com, ldaps://ldap2.example.com';
To have each Xpand node connect to a single LDAP server example.com
over ldaps://
on the non-standard port 1636
:
SET GLOBAL ldap_servers = 'ldaps://example.com:1636';
ERROR HANDLING
FEATURE INTERACTION
RESPONSES
DIAGNOSIS
ISO 9075:2016
CHANGE HISTORY
Release Series | History |
---|---|
23.09 |
|
6.1 |
|
6.0 |
|
5.3 |
|