amAuthAD.properties revision f35fa6b495e6ea8bfb6b752ecc172d75187e7b48
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# Copyright (c) 2007 Sun Microsystems Inc. All Rights Reserved
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# The contents of this file are subject to the terms
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# of the Common Development and Distribution License
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# (the License). You may not use this file except in
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# compliance with the License.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# You can obtain a copy of the License at
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# https://opensso.dev.java.net/public/CDDLv1.0.html or
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# See the License for the specific language governing
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# permission and limitations under the License.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# When distributing Covered Code, include this CDDL
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# Header Notice in each file and include the License file
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# If applicable, add the following below the CDDL Header,
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# with the fields enclosed by brackets [] replaced by
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# your own identifying information:
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# "Portions Copyrighted [year] [name of copyright owner]"
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# $Id: amAuthAD.properties,v 1.5 2009/12/11 01:43:23 goodearth Exp $
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# Portions Copyrighted 2011 ForgeRock Inc
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen# Portions Copyrighted 2012 Open Source Solution Technology Corporation
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenauthentication=Authentication Modules
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenLDAPex=Unknown LDAP exception.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenUPerror=Both user ID and password required.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenclasspathError=Class not found. Check class path.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenInvalidUP=Invalid user ID and password. Try again.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenNoUser=User ID not found.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenNoServer=Server cannot be contacted.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenNaming=Naming error has occurred.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelensunAMAuthADServiceDescription=Active Directory
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenPasswordExp=Password Expires In: {0}
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenGraceLogins=Your password has expired and you have {0} grace logins remaining.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenTimeBeforeExpiration=Password expires in: {0}
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenPasswordReset=Reset the password.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenPasswdMismatch=The password and the confirm password do not match.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenPasswordInvalid=Your password does not comply with present password policy.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenNewPasswordInvalid=Your new password does not comply with present password policy.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenUPsame=Username and password must be different. Try again.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengeleninPwdQual=New password does not meet the password policy requirements.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenpwdInHist=New password has been used previously.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenpwdToShort=New password is too short.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenpwdToYoung=Password has been changed recently, cannot change password.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenPInvalid=The password you have entered is invalid.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenPasswdSame=The password must be different. Try again.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenPasswdMinChars=Password contains fewer than minimum number of characters.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena101=Primary Active Directory Server
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena101.help=Use this list to set the primary Active Directory server used for authentication.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena101.help.txt=The Active Directory authentication module will use this list as the primary server for authentication. A single entry must \
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenbe in the format:<br/><br/><code>server:port</code><br/><br/>Multiple entries allow associations between OpenAM servers and an \
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenActive Directory server. \
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenThe format is:<br/><br/><code>local server name | server:port</code><br/><br/>\
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenThe local server name is the full name of the server from the list of servers and sites.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena102=Secondary Active Directory Server
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena102.help=Use this list to set the secondary (failover) Active Directory server used for authentication.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena102.help.txt=If the primary Active Directory server fails, the Active Directory authentication module will failover to the secondary \
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenserver. A single entry must be in the format:<br/><br/><code>server:port</code><br/><br/>\
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenMultiple entries allow associations between OpenAM servers and an Active Directory server. \
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenThe format is:<br/><br/><code>local server name | server:port</code><br/><br/>\
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen<i>NB </i>The local server name is the full name of the server from the list of servers and sites.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena103=DN to Start User Search
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena103.help=The search for accounts to be authenticated start from this base DN
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena103.help.txt=For a single server just enter the Base DN to be searched. Multiple OpenAM servers can have different base DNs for the search \
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenThe format is as follows:<br/><br/><code>local server name | search DN</code><br/><br/>\
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen<i>NB </i>The local server name is the full name of the server from the list of servers and sites.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena104=Bind User DN
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena104.help=The DN of an admin user used by the module to authentication to the LDAP server
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena104.help.txt=The LDAP module requires an administration account in order to perform functionality such as password reset.<br/><br/>\
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen<i>NB </i><code>cn=Directory Manager</code> should not be used in production systems.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena105=Bind User Password
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena105.help=The password of the administration account.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena106=Attribute Used to Retrieve User Profile
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena106.help=The LDAP module will use this attribute to search of the profile of an authenticated user.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena106.help.txt=This is the attribute used to find the profile of the authenticated user. Normally this will be the same attribute used to \
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenfind the user account. The value will be the name of the user used for authentication.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena107=Attributes Used to Search for a User to be Authenticated
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena107.help=The attributes specified in this list form the LDAP search filter.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena107.help.txt=The default value of uid will form the following search filter of <code>uid=<i>user</i></code>, if there are multiple \
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenvalues such as uid and cn, the module will create a search filter as follows <code>(|(uid=<i>user</i>)(cn=<i>user</i>))</code>
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena108=User Search Filter
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena108.help=This search filter will be appended to the standard user search filter.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena108.help.txt=This attribute can be used to append a custom search filter to the standard filter. For example: \
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen<code>(objectClass=person)</code>would result in the following user search filter:<br/><br/>\
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen<code>(&(uid=<i>user</i>)(objectClass=person))</code>
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena109=Search Scope
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena109.help=The level in the Directory Server that will be searched for a matching user profile.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena109.help.txt=This attribute controls how the directory is searched.<br/><br/>\
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen<ul><li><code>OBJECT</code>: Only the Base DN is searched.</li>\
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen<li><code>ONELEVEL</code>: Only the single level below (and not the Base DN) is searched</li>\
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen<li><code>SUBTREE</code>: The Base DN and all levels below are searched</li></ul>
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena110=SSL/TLS Access to Active Directory Server
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena110.help=Ensures the SSL/TLS will be used to establish connections to the LDAP server.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena110.help.txt=If this property is enabled; all connections to the Active Directory server will be over SSL/TLS. The SSL certificate on \
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenthe Active Directory server must be valid or the certificate must be trusted and stored in the OpenAM local certificate file.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena111=Return User DN to DataStore
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena111.help=Controls whether the DN or the username is returned as the authentication principal.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena113=Active Directory Server Check Interval
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena113.help=The interval of the check used to detect failure in the Active Directory server; in minutes.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena113.help.txt=This is the frequency that the Active Directory module will check if the current Active Directory server is available. \
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenIf the server is not available then the module will failover to the other server.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena114=User Creation Attributes
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena114.help=Controls the mapping of local attribute to external attribute for dynamic profile creation.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena114.help.txt=If dynamic profile creation is enabled; this feature allows for a mapping between the attribute/values retrieved from \
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenthe users authenticated profile and the attribute/values that will be provisioned into their matching account in the data store.\
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen<br/><br/>The format of this property is: <br/><br/><code> local attr1|external attr1</code>
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenAcctInactive=Account in-activated or locked. Unlock or activate the account.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen## Note level should have the highest
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen## number for i18N key since it should
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen## be the last attribute when viewed in
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelen## the adminconsole
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena500=Authentication Level
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena500.help=The authentication level associated with this module.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelena500.help.txt=Each authentication module has an authentication level that can be used to indicate the level of security \
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenassociated with the module; 0 is the lowest (and the default).
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenInappAuth=Inappropriate Authentication
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelennoUserMatchFound=User not found.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenmultipleUserMatchFound=Multiple matches found for the user. Contact your system administrator to fix the problem.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenNosecserver=No secondary server provided.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenchoiceObject=OBJECT
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenchoiceOneLevel=ONELEVEL
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenchoiceSubTree=SUBTREE
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenHostInvalid=Invalid host name.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenHostUnknown=Unknown host {0}
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenSchBaseInvalid=Invalid search base.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenPwdInvalid=Invalid user password.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenFConnect=Connection failed.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenCredInvalid=Invalid credentials.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenUsrNotExist=User does not exist.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenFAuth=Authentication failed.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenUNAttr=User naming attribute is null.
6bc0b25077dcb0cce5dea357de5bab735babe891johanengelenUSchAttr=User search attributes must have at least one value.