Method and system for automated distinguished name lookup
First Claim
1. A method for selecting a distinguished name for use in a Lightweight Directory Access Protocol (LDAP) directory operation in a data processing system, the method comprising the computer-implemented steps of:
- receiving user input for an identifier string via a first input means, wherein the identifier string is not a distinguished name;
generating an LDAP search filter string comprising at least a portion of the identifier string;
requesting a directory search using the LDAP search filter string;
in response to the requested directory search, receiving one or more distinguished names; and
in response to receiving one or more distinguished names for the requested directory search, applying a received distinguished name in the LDAP directory operation.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system for an automated distinguished name lookup is provided for use in a Lightweight Directory Access Protocol (LDAP) directory operation. A user provides input via a dialog window for an identifier string which is not a distinguished name. An LDAP search filter string is generated that contains at least a portion of the identifier string. A directory search is requested using the LDAP search filter string. In response to the requested directory search, one or more distinguished names are received. In response to receiving a single distinguished name for the requested directory search, the received distinguished name is automatically applied in the LDAP directory operation. In response to receiving a plurality of distinguished names for the requested directory search, the plurality of distinguished names are presented to the user, and the user may select one of the plurality of distinguished names. The selected distinguished name is then applied in the LDAP directory operation, which may perform an authentication process for the user using a distinguished name received in response to the requested directory search. The user may also configure a dialog window for entry attributes and filters to be used while searching for potential distinguished names.
55 Citations
44 Claims
-
1. A method for selecting a distinguished name for use in a Lightweight Directory Access Protocol (LDAP) directory operation in a data processing system, the method comprising the computer-implemented steps of:
-
receiving user input for an identifier string via a first input means, wherein the identifier string is not a distinguished name;
generating an LDAP search filter string comprising at least a portion of the identifier string;
requesting a directory search using the LDAP search filter string;
in response to the requested directory search, receiving one or more distinguished names; and
in response to receiving one or more distinguished names for the requested directory search, applying a received distinguished name in the LDAP directory operation. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
receiving user input for an object class identifier; and
inserting a search term for an object class identified by the object class identifier in the LDAP search filter string.
-
-
4. The method of claim 1 further comprising:
in response to receiving a single distinguished name for the requested directory search, automatically applying the received distinguished name in the LDAP directory operation.
-
5. The method of claim 1 further comprising:
-
in response to receiving a plurality of distinguished names for the requested directory search, presenting the plurality of distinguished names to the user;
receiving user input to select one of the plurality of distinguished names; and
applying the selected distinguished name in the LDAP directory operation.
-
-
6. The method of claim 5 wherein a portion of the identifier string matches a relative distinguished name within the selected distinguished name.
-
7. The method of claim 1 wherein a portion of the identifier string matches a relative distinguished name within a received distinguished name.
-
8. The method of claim 1 wherein the identifier string comprises a partial identifier and a wildcard indicator.
-
9. The method of claim 1 wherein the identifier string is at least a portion of a user name or user identifier.
-
10. The method of claim 9 further comprising:
performing an authentication process for the user using a distinguished name received in response to the requested directory search.
-
11. The method of claim 1 further comprising:
receiving a user-specified name for an LDAP objectClass to be used in the directory search.
-
12. The method of claim 1 further comprising:
receiving a user-specified name for an LDAP entry attribute to be used in the directory search.
-
13. The method of claim 1 further comprising:
receiving a user-specified LDAP search filter string to be used in the directory search, wherein the user-specified LDAP search filter string is combined with the generated LDAP search filter string.
-
14. The method of claim 1 further comprising:
providing user-specified configurability for the first input means via a second input means.
-
15. The method of claim 14 further comprising:
-
receiving a user-specified identifier via the second input means; and
generating an input field in the first input means based on the user-specified identifier.
-
-
16. The method of claim 15 wherein the user-specified identifier is an LDAP entry attribute.
-
17. A data processing system for selecting a distinguished name for use in a Lightweight Directory Access Protocol (LDAP) directory operation in the data processing system, the data processing system comprising:
-
first receiving means for receiving user input for an identifier string via a first input means, wherein the identifier string is not a distinguished name;
generating means for generating an LDAP search filter string comprising at least a portion of the identifier string;
requesting means for requesting a directory search using the LDAP search filter string;
second receiving means for receiving, in response to the requested directory search, one or more distinguished names; and
first applying means for applying, in response to receiving one or more distinguished names for the requested directory search, a received distinguished name in the LDAP directory operation. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30)
second applying means for automatically applying, in response to receiving a single distinguished name for the requested directory search, the received distinguished name in the LDAP directory operation.
-
-
19. The data processing system of claim 17 further comprising:
-
presenting means for presenting, in response to receiving a plurality of distinguished names for the requested directory search, the plurality of distinguished names to the user;
third receiving means for receiving user input to select one of the plurality of distinguished names; and
second applying means for applying the selected distinguished name in the LDAP directory operation.
-
-
20. The data processing system of claim 19 wherein a portion of the identifier string matches a relative distinguished name within the selected distinguished name.
-
21. The data processing system of claim 17 wherein a portion of the identifier string matches a relative distinguished name within the received distinguished name.
-
22. The data processing system of claim 17 wherein the identifier string comprises a partial identifier and a wildcard indicator.
-
23. The data processing system of claim 17 wherein the identifier string is at least a portion of a user name or user identifier.
-
24. The data processing system of claim 23 further comprising:
performing means for performing an authentication process for the user using a distinguished name received in response to the requested directory search.
-
25. The data processing system of claim 17 further comprising:
fourth receiving means for receiving a user-specified name for an LDAP objectClass to be used in the directory search.
-
26. The data processing system of claim 17 further comprising:
fifth receiving means for receiving a user-specified name for an LDAP entry attribute to be used in the directory search.
-
27. The data processing system of claim 17 further comprising:
sixth receiving means for receiving a user-specified LDAP search filter string to be used in the directory search, wherein the user-specified LDAP search filter string is combined with the generated LDAP search filter string.
-
28. The data processing system of claim 17 further comprising:
providing means for providing user-specified configurability for the first input means via a second input means.
-
29. The data processing system of claim 28 further comprising:
-
seventh receiving means for receiving a user-specified identifier via the second input means; and
generating means for generating an input field in the first input means based on the user-specified identifier.
-
-
30. The data processing system of claim 29 wherein the user-specified identifier is an LDAP entry attribute.
-
31. A computer program product in a computer-readable medium for use in a data processing system for selecting a distinguished name for use in a Lightweight Directory Access Protocol (LDAP) directory operation, the computer program product comprising:
-
first instructions for receiving user input for an identifier string via a first input means, wherein the identifier string is not a distinguished name;
second instructions for generating an LDAP search filter string comprising at least a portion of the identifier string;
third instructions for requesting a directory search using the LDAP search filter string;
fourth instructions for receiving, in response to the requested directory search, one or more distinguished names; and
fifth instructions for applying, in response to receiving one or more distinguished names for the requested directory search, a received distinguished name in the LDAP directory operation. - View Dependent Claims (32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44)
instructions for automatically applying, in response to receiving a single distinguished name for the requested directory search, the received distinguished name in the LDAP directory operation.
-
-
33. The computer program product of claim 31 further comprising:
-
instructions for presenting, in response to receiving a plurality of distinguished names for the requested directory search, the plurality of distinguished names to the user;
instructions for receiving user input to select one of the plurality of distinguished names; and
instructions for applying the selected distinguished name in the LDAP directory operation.
-
-
34. The computer program product of claim 31 wherein a portion of the identifier string matches a relative distinguished name within the received distinguished name.
-
35. The computer program product of claim 33 wherein a portion of the identifier string matches a relative distinguished name within the selected distinguished name.
-
36. The computer program product of claim 31 wherein the identifier string comprises a partial identifier and a wildcard indicator.
-
37. The computer program product of claim 31 wherein the identifier string is at least a portion of a user name or user identifier.
-
38. The computer program product of claim 37 further comprising:
instructions for performing an authentication process for the user using a distinguished name received in response to the requested directory search.
-
39. The computer program product of claim 31 further comprising:
instructions for receiving a user-specified name for an LDAP objectClass to be used in the directory search.
-
40. The computer program product of claim 31 further comprising:
instructions for receiving a user-specified name for an LDAP entry attribute to be used in the directory search.
-
41. The computer program product of claim 40 further comprising:
-
instructions for receiving a user-specified identifier via the second input means; and
generating an input field in the first input means based on the user-specified identifier.
-
-
42. The computer program product of claim 41 wherein the user-specified identifier is an LDAP entry attribute.
-
43. The computer program product of claim 31 further comprising:
instructions for receiving a user-specified LDAP search filter string to be used in the directory search, wherein the user-specified LDAP search filter string is combined with the generated LDAP search filter string.
-
44. The computer program product of claim 31 further comprising:
instructions for providing user-specified configurability for the first input means via a second input means.
Specification