ldap_servers for MariaDB Xpand

Overview

In 23.09:

Comma-separated list of LDAP servers, each of the form 'protocol://hostname[:port]'. If multiple servers are specified, each node will round-robin its LDAP queries among the list.

In 6.1, 6.0, 5.3:

Not present

See also: System Variables for MariaDB Xpand 23.09, in 6.1, in 6.0, and in 5.3

USAGE

The ldap_servers system variable can be set by executing SET GLOBAL:

SET GLOBAL ldap_servers = true;

Using SET GLOBAL to set the value of a global variable in Xpand causes a change that will persist on restart.

DETAILS

The ldap_servers system variable defines a comma-separated list of LDAP servers, each of the form '<protocol>://<hostname>[:<port>]'. If multiple servers are specified, each node will round-robin its LDAP queries among the list.

Allowed protocol values are ldap:// and ldaps://

When using ldaps://, take care that the LDAP server's hostname in this global variable matches the Common Name (CN) in the LDAP server's TLS certificate.

A mismatch of names over ldaps:// will prevent Xpand from establishing a connection to the LDAP server. One realistic way this could occur is by using a domain name in the LDAP server's certificate, but the corresponding IP address in this global variable.

If you are using self-signed or privately signed certificates, then it is possible to use IP addresses. However, you must consistently use the same IP address in both this global variable and also when generating the LDAP server's certificate.

SYNONYMS

SCHEMA

PARAMETERS

SKYSQL

PRIVILEGES

EXAMPLES

In this example each Xpand node will round-robin its LDAP queries between LDAP server's ldap1.example.com over ldap:// and ldap2.example.com over ldaps://. Both LDAP servers must present the same directory structure.

SET GLOBAL ldap_servers = 'ldap://ldap1.example.com, ldaps://ldap2.example.com';

To have each Xpand node connect to a single LDAP server example.com over ldaps:// on the non-standard port 1636:

SET GLOBAL ldap_servers = 'ldaps://example.com:1636';

ERROR HANDLING

FEATURE INTERACTION

RESPONSES

DIAGNOSIS

ISO 9075:2016

CHANGE HISTORY

Release Series

History

23.09

  • Added in MariaDB Xpand 23.09.1.

6.1

  • Not present.

6.0

  • Not present.

5.3

  • Not present.

EXTERNAL REFERENCES