Digipass Plug-In for SBR Administrator Reference - Vasco
Digipass Plug-In for SBR Administrator Reference - Vasco
Digipass Plug-In for SBR Administrator Reference - Vasco
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
<strong>Digipass</strong> <strong>Plug</strong>-<strong>In</strong> <strong>for</strong> <strong>SBR</strong> <strong>Administrator</strong> <strong>Reference</strong> Active Directory Schema<br />
2 Active Directory Schema<br />
2.1 Schema Extensions<br />
The following tables document the changes required by <strong>Digipass</strong> <strong>Plug</strong>-<strong>In</strong> <strong>for</strong> <strong>SBR</strong> to the Active<br />
Directory schema when AD is used as the data store.<br />
2.1.1 Added Object Classes<br />
Table 1: Custom Active Directory Object Classes<br />
Attribute Type Location Explanation<br />
vasco-UserExt Aux.<br />
Class<br />
vasco-DPToken Class Unassigned – Optional<br />
User record Extra VASCO attributes are added to an Active Directory<br />
User record via an 'auxiliary class' vasco-UserExt on the<br />
User class.<br />
Assigned – with User<br />
record<br />
The vasco-DPToken class is used to store <strong>Digipass</strong><br />
attributes. It is also a container, in which vasco-<br />
DPApplication records <strong>for</strong> that <strong>Digipass</strong> are stored.<br />
Upon assignment to a User, the <strong>Digipass</strong> record is stored<br />
in the same location as the User.<br />
vasco-DPApplication Class Within <strong>Digipass</strong> record This class is used to store <strong>Digipass</strong> Application attributes,<br />
such as Server PIN and expected OTP length.<br />
vasco-Policy Class <strong>Digipass</strong> Configuration<br />
Container<br />
vasco-Component Class <strong>Digipass</strong> Configuration<br />
Container<br />
vasco-BackEndServer Class <strong>Digipass</strong> Configuration<br />
Container<br />
2.1.2 Added Attributes<br />
Table 2: Custom Active Directory Object Attributes<br />
Name Class<br />
vasco-SerialNumber vasco-DPToken<br />
vasco-TokenType vasco-DPToken<br />
vasco-ApplicationNames vasco-DPToken<br />
vasco-ApplicationTypes vasco-DPToken<br />
vasco-Link<strong>Vasco</strong><strong>Digipass</strong>ToUserExt vasco-DPToken<br />
vasco-TokenAssignedDate vasco-DPToken<br />
vasco-GracePeriod vasco-DPToken<br />
vasco-EnableBVDP vasco-DPToken<br />
vasco-BVDPExpiryDate vasco-DPToken<br />
vasco-BVDPUsesLeft vasco-DPToken<br />
vasco-DirectAssignOnly vasco-DPToken<br />
vasco-AdditionalAttribute vasco-DPToken<br />
vasco-SerialNumber vasco-DPApplication<br />
vasco-ApplicationName vasco-DPApplication<br />
vasco-ApplicationNumber vasco-DPApplication<br />
Policy attributes. Attributes will commonly be shared via<br />
inheritance.<br />
Component attributes include the License Key <strong>for</strong> <strong>SBR</strong><br />
<strong>Plug</strong>-<strong>In</strong> Components.<br />
<strong>In</strong><strong>for</strong>mation required <strong>for</strong> connection to back-end servers.<br />
© 2006 VASCO Data Security <strong>In</strong>c. 16