Safes

This topic describes Safe configuration. It also describes how to set LDAP directory search parameters so that you can search for and add LDAP users as Safe members in a Safe.

Safe configuration overview

Authorized users can add Safes in the Vault using the PVWA. These Safes are created according to predefined properties in the Web Access Safe Templates parameters. This enables Vault administrators to make sure that all Safes created in the PVWA have the same properties. For more information, see Default Safe properties.

All Safes that are created in the PVWA are located in the same location as the user’s account in the Vault hierarchy.

For more information about creating Safes, see Add a Safe.

LDAP directory search parameters

The PVWA can search LDAP directories for users to add as Safe members, according to the profile set for each directory.

In the LDAP Search parameters of the Web Access Options, the following parameters define searches that you perform on an LDAP directory. Set these parameters to optimize your search results.

Parameter

Description

SearchType

Specifies the type of search to perform.

Values:

  • BeginsWith: Identifies search criteria if it appears at the beginning of the specified search field.

  • EndsWith: Identifies search criteria if it appears at the end of the specified search field.

  • Contains: Identifies search criteria if it appears anywhere in the specified search field.

  • ExactMatch: Identifies search criteria if it is identical to the specified search field.

 

The above values are not case-sensitive.

SearchField

In the LDAP directory, specifies the field in the profile in which to search for the specified text.

Possible values:

  • Username: The search is based on the Username field. This is the default value.

  • FirstName: The search is based on the user's FirstName field.

  • LastName: The search is based on the user's LastName field.

  • Email: The search is based on the user's email field.

Example

In this example, the search looks for LDAP users whose names begin with the characters that are specified in the PVWA.

The search field under LDAP Search, Username, determines that the search will be based on the field that corresponds to the Username parameter in the LDAP directory profile.