Method and system for automated distinguished name lookup
First Claim
Patent Images
1. A method for selecting a distinguished name for use in a Lightweight Directory Access Protocol (LDAP) directory operation in a data processing system, the method comprising the computer-implemented steps of:
- receiving user input for an identifier string via a first input means, wherein the identifier string is not a distinguished name;
generating an LDAP search filter string comprising at least a portion of the identifier string;
requesting a directory search using the LDAP search filter string;
in response to the requested directory search, receiving one or more distinguished names; and
in response to receiving one or more distinguished names for the requested directory search, applying a received distinguished name in the LDAP directory operation.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system for an automated distinguished name lookup is provided for use in a Lightweight Directory Access Protocol (LDAP) directory operation. A user provides input via a dialog window for an identifier string which is not a distinguished name. An LDAP search filter string is generated that contains at least a portion of the identifier string. A directory search is requested using the LDAP search filter string. In response to the requested directory search, one or more distinguished names are received. In response to receiving a single distinguished name for the requested directory search, the received distinguished name is automatically applied in the LDAP directory operation. In response to receiving a plurality of distinguished names for the requested directory search, the plurality of distinguished names are presented to the user, and the user may select one of the plurality of distinguished names. The selected distinguished name is then applied in the LDAP directory operation, which may perform an authentication process for the user using a distinguished name received in response to the requested directory search. The user may also configure a dialog window for entry attributes and filters to be used while searching for potential distinguished names.
55 Citations
44 Claims
-
1. A method for selecting a distinguished name for use in a Lightweight Directory Access Protocol (LDAP) directory operation in a data processing system, the method comprising the computer-implemented steps of:
-
receiving user input for an identifier string via a first input means, wherein the identifier string is not a distinguished name;
generating an LDAP search filter string comprising at least a portion of the identifier string;
requesting a directory search using the LDAP search filter string;
in response to the requested directory search, receiving one or more distinguished names; and
in response to receiving one or more distinguished names for the requested directory search, applying a received distinguished name in the LDAP directory operation. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
receiving user input for an object class identifier; and
inserting a search term for an object class identified by the object class identifier in the LDAP search filter string.
-
-
4. The method of claim 1 further comprising:
in response to receiving a single distinguished name for the requested directory search, automatically applying the received distinguished name in the LDAP directory operation.
-
5. The method of claim 1 further comprising:
-
in response to receiving a plurality of distinguished names for the requested directory search, presenting the plurality of distinguished names to the user;
receiving user input to select one of the plurality of distinguished names; and
applying the selected distinguished name in the LDAP directory operation.
-
-
6. The method of claim 5 wherein a portion of the identifier string matches a relative distinguished name within the selected distinguished name.
-
7. The method of claim 1 wherein a portion of the identifier string matches a relative distinguished name within a received distinguished name.
-
8. The method of claim 1 wherein the identifier string comprises a partial identifier and a wildcard indicator.
-
9. The method of claim 1 wherein the identifier string is at least a portion of a user name or user identifier.
-
10. The method of claim 9 further comprising:
performing an authentication process for the user using a distinguished name received in response to the requested directory search.
-
11. The method of claim 1 further comprising:
receiving a user-specified name for an LDAP objectClass to be used in the directory search.
-
12. The method of claim 1 further comprising:
receiving a user-specified name for an LDAP entry attribute to be used in the directory search.
-
13. The method of claim 1 further comprising:
receiving a user-specified LDAP search filter string to be used in the directory search, wherein the user-specified LDAP search filter string is combined with the generated LDAP search filter string.
-
14. The method of claim 1 further comprising:
providing user-specified configurability for the first input means via a second input means.
-
15. The method of claim 14 further comprising:
-
receiving a user-specified identifier via the second input means; and
generating an input field in the first input means based on the user-specified identifier.
-
-
16. The method of claim 15 wherein the user-specified identifier is an LDAP entry attribute.
-
17. A data processing system for selecting a distinguished name for use in a Lightweight Directory Access Protocol (LDAP) directory operation in the data processing system, the data processing system comprising:
-
first receiving means for receiving user input for an identifier string via a first input means, wherein the identifier string is not a distinguished name;
generating means for generating an LDAP search filter string comprising at least a portion of the identifier string;
requesting means for requesting a directory search using the LDAP search filter string;
second receiving means for receiving, in response to the requested directory search, one or more distinguished names; and
first applying means for applying, in response to receiving one or more distinguished names for the requested directory search, a received distinguished name in the LDAP directory operation. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30)
second applying means for automatically applying, in response to receiving a single distinguished name for the requested directory search, the received distinguished name in the LDAP directory operation.
-
-
19. The data processing system of claim 17 further comprising:
-
presenting means for presenting, in response to receiving a plurality of distinguished names for the requested directory search, the plurality of distinguished names to the user;
third receiving means for receiving user input to select one of the plurality of distinguished names; and
second applying means for applying the selected distinguished name in the LDAP directory operation.
-
-
20. The data processing system of claim 19 wherein a portion of the identifier string matches a relative distinguished name within the selected distinguished name.
-
21. The data processing system of claim 17 wherein a portion of the identifier string matches a relative distinguished name within the received distinguished name.
-
22. The data processing system of claim 17 wherein the identifier string comprises a partial identifier and a wildcard indicator.
-
23. The data processing system of claim 17 wherein the identifier string is at least a portion of a user name or user identifier.
-
24. The data processing system of claim 23 further comprising:
performing means for performing an authentication process for the user using a distinguished name received in response to the requested directory search.
-
25. The data processing system of claim 17 further comprising:
fourth receiving means for receiving a user-specified name for an LDAP objectClass to be used in the directory search.
-
26. The data processing system of claim 17 further comprising:
fifth receiving means for receiving a user-specified name for an LDAP entry attribute to be used in the directory search.
-
27. The data processing system of claim 17 further comprising:
sixth receiving means for receiving a user-specified LDAP search filter string to be used in the directory search, wherein the user-specified LDAP search filter string is combined with the generated LDAP search filter string.
-
28. The data processing system of claim 17 further comprising:
providing means for providing user-specified configurability for the first input means via a second input means.
-
29. The data processing system of claim 28 further comprising:
-
seventh receiving means for receiving a user-specified identifier via the second input means; and
generating means for generating an input field in the first input means based on the user-specified identifier.
-
-
30. The data processing system of claim 29 wherein the user-specified identifier is an LDAP entry attribute.
-
31. A computer program product in a computer-readable medium for use in a data processing system for selecting a distinguished name for use in a Lightweight Directory Access Protocol (LDAP) directory operation, the computer program product comprising:
-
first instructions for receiving user input for an identifier string via a first input means, wherein the identifier string is not a distinguished name;
second instructions for generating an LDAP search filter string comprising at least a portion of the identifier string;
third instructions for requesting a directory search using the LDAP search filter string;
fourth instructions for receiving, in response to the requested directory search, one or more distinguished names; and
fifth instructions for applying, in response to receiving one or more distinguished names for the requested directory search, a received distinguished name in the LDAP directory operation. - View Dependent Claims (32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44)
instructions for automatically applying, in response to receiving a single distinguished name for the requested directory search, the received distinguished name in the LDAP directory operation.
-
-
33. The computer program product of claim 31 further comprising:
-
instructions for presenting, in response to receiving a plurality of distinguished names for the requested directory search, the plurality of distinguished names to the user;
instructions for receiving user input to select one of the plurality of distinguished names; and
instructions for applying the selected distinguished name in the LDAP directory operation.
-
-
34. The computer program product of claim 31 wherein a portion of the identifier string matches a relative distinguished name within the received distinguished name.
-
35. The computer program product of claim 33 wherein a portion of the identifier string matches a relative distinguished name within the selected distinguished name.
-
36. The computer program product of claim 31 wherein the identifier string comprises a partial identifier and a wildcard indicator.
-
37. The computer program product of claim 31 wherein the identifier string is at least a portion of a user name or user identifier.
-
38. The computer program product of claim 37 further comprising:
instructions for performing an authentication process for the user using a distinguished name received in response to the requested directory search.
-
39. The computer program product of claim 31 further comprising:
instructions for receiving a user-specified name for an LDAP objectClass to be used in the directory search.
-
40. The computer program product of claim 31 further comprising:
instructions for receiving a user-specified name for an LDAP entry attribute to be used in the directory search.
-
41. The computer program product of claim 40 further comprising:
-
instructions for receiving a user-specified identifier via the second input means; and
generating an input field in the first input means based on the user-specified identifier.
-
-
42. The computer program product of claim 41 wherein the user-specified identifier is an LDAP entry attribute.
-
43. The computer program product of claim 31 further comprising:
instructions for receiving a user-specified LDAP search filter string to be used in the directory search, wherein the user-specified LDAP search filter string is combined with the generated LDAP search filter string.
-
44. The computer program product of claim 31 further comprising:
instructions for providing user-specified configurability for the first input means via a second input means.
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeInternational Business Machines Corporation
-
Original AssigneeInternational Business Machines Corporation
-
InventorsShi, Shepherd S. B., Byrne, Debora J., Hill, Reggie
-
Primary Examiner(s)Coby, Frantz
-
Application NumberUS09/460,841Time in Patent Office917 DaysField of Search707/3, 707/4, 707/5, 707/104, 707/102US Class Current1/1CPC Class CodesG06F 16/90344 by using string matching te...Y10S 707/99933 Query processing, i.e. sear...Y10S 707/99934 Query formulation, input pr...Y10S 707/99935 Query augmenting and refini...Y10S 707/99943 Generating database or data...Y10S 707/99945 Object-oriented database st...Y10S 707/99948 Application of database or ...
