IdP 3.4.3 attribute-resolver.xml LDAP DataConnector errors

Cantor, Scott cantor.2 at
Wed Apr 10 10:42:40 EDT 2019

On 4/10/19, 10:33 AM, "users on behalf of Glanville, Peter C." <users-bounces at on behalf of pcglanville at> wrote:

> However, when using the dataconnector for the attributes, there are a lot of LDAP variables that don't seem to carry
> over. For example: 

Properties are a syntactic approach with trade offs but the setting that ends up in the XML at the end of the property replacement process is what it is, and it works or not.

Most properties are used because they allow injection of settings into system files that can't be edited, so they get around the limitation. Using them in other cases tends to be a historical choice that was quite often counterproductive as much as useful.
> idp.authn.LDAP.useSSL
> idp.authn.LDAP.sslConfig

Neither of those applies to the resolver's configuration syntax to my knowledge. There are no corresponding settings that would use them in a replacement expression in the XML.

-- Scott

More information about the users mailing list