#
#  LDAP Server Name
#
$LDAP_Server = 'ourldapserver.company.com';
#
# the LDAP_Server port where secure binds can be done to validate the users password
# 389 (default LDAP port) would send the password over the net in clear text.. 
# 636 (typical secure port) would use SSL to send the password during bind
#
$LDAP_AuthPort = 636;
#
# we will use the default port for Search
# as searches are done ALL the time in the clear
# this is here for documentation purposes, not hard coded in the code
#
$LDAP_SearchPort = 389;
#
# this uses the LDAP search function to locate the users distinguished (dn) name
# we do this on the non-secure port (389) cause everything else does it too
#
# this is the base of the LDAP directory to search for this user
# the directory designers/application support team can tell you what this string is for 
# the directory you need to use.
#
$LDAP_SearchBase   ='ou=some_organization,o=ourcompany.com';
#
# this tells LDAP whether the search is single level 'base' (just in this specific branch)
# of if the search can travers the directory to locate the user 'sub'
#  the choice here depends on the directory implementation and security rules at a particular company
#
$LDAP_SearchScope  ='sub';  # or 'base'
#
# this is the filter used on the search. As we have only the userid, that is all we can search on
# but how this is coded in the directory will determine this filter string. 
#
# note that the user name is bracketed by %%.. perl will NOT substitute at runtime
# so we have to use a replace function to rebuild the string
#
$LDAP_SearchFilter ='(&(objectclass=person)(mail=%username%))';
#
# this tells the replace function ->s/mask/data what string the userid should replace in the
# filter above
#
$LDAP_UserNameMask ='%username%';