amAuthAD.properties revision 7b231e67dc8acb6995cce9bcdbc71f40a4f37dd9
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# Copyright (c) 2007 Sun Microsystems Inc. All Rights Reserved
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# The contents of this file are subject to the terms
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# of the Common Development and Distribution License
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# (the License). You may not use this file except in
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# compliance with the License.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# You can obtain a copy of the License at
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# https://opensso.dev.java.net/public/CDDLv1.0.html or
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# See the License for the specific language governing
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# permission and limitations under the License.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# When distributing Covered Code, include this CDDL
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# Header Notice in each file and include the License file
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# If applicable, add the following below the CDDL Header,
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# with the fields enclosed by brackets [] replaced by
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# your own identifying information:
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# "Portions Copyrighted [year] [name of copyright owner]"
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# $Id: amAuthAD.properties,v 1.5 2009/12/11 01:43:23 goodearth Exp $
d11c725a6a076f607c240f98ff03ca3166b581c9vboxsync# Portions Copyrighted 2011 ForgeRock Inc
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync# Portions Copyrighted 2012 Open Source Solution Technology Corporation
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncauthentication=Authentication Modules
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncLDAPex=Unknown LDAP exception.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncUPerror=Both user ID and password required.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncclasspathError=Class not found. Check class path.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncInvalidUP=Invalid user ID and password. Try again.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncNoUser=User ID not found.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncNoServer=Server cannot be contacted.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncNaming=Naming error has occurred.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncsunAMAuthADServiceDescription=Active Directory
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncPasswordExp=Password Expires In: {0}
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncGraceLogins=Your password has expired and you have {0} grace logins remaining.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncTimeBeforeExpiration=Password expires in: {0}
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncPasswordReset=Reset the password.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncPasswdMismatch=The password and the confirm password do not match.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncPasswordInvalid=Your password does not comply with present password policy.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncNewPasswordInvalid=Your new password does not comply with present password policy.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncUPsame=Username and password must be different. Try again.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncinPwdQual=New password does not meet the password policy requirements.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncpwdInHist=New password has been used previously.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncpwdToShort=New password is too short.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncpwdToYoung=Password has been changed recently, cannot change password.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncPInvalid=The password you have entered is invalid.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncPasswdSame=The password must be different. Try again.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncPasswdMinChars=Password contains fewer than minimum number of characters.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca101=Primary Active Directory Server
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca101.help=Use this list to set the primary Active Directory server used for authentication.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca101.help.txt=The Active Directory authentication module will use this list as the primary server for authentication. A single entry must \
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncbe in the format:<br/><br/><code>server:port</code><br/><br/>Multiple entries allow associations between OpenAM servers and an \
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncActive Directory server. \
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncThe format is:<br/><br/><code>local server name | server:port</code><br/><br/>\
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncThe local server name is the full name of the server from the list of servers and sites.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca102=Secondary Active Directory Server
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca102.help=Use this list to set the secondary (failover) Active Directory server used for authentication.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca102.help.txt=If the primary Active Directory server fails, the Active Directory authentication module will failover to the secondary \
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncserver. A single entry must be in the format:<br/><br/><code>server:port</code><br/><br/>\
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncMultiple entries allow associations between OpenAM servers and an Active Directory server. \
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncThe format is:<br/><br/><code>local server name | server:port</code><br/><br/>\
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync<i>NB </i>The local server name is the full name of the server from the list of servers and sites.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca103=DN to Start User Search
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca103.help=The search for accounts to be authenticated start from this base DN
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca103.help.txt=For a single server just enter the Base DN to be searched. Multiple OpenAM servers can have different base DNs for the search \
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncThe format is as follows:<br/><br/><code>local server name | search DN</code><br/><br/>\
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync<i>NB </i>The local server name is the full name of the server from the list of servers and sites.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca104=Bind User DN
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca104.help=The DN of an admin user used by the module to authentication to the LDAP server
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca104.help.txt=The LDAP module requires an administration account in order to perform functionality such as password reset.<br/><br/>\
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync<i>NB </i><code>cn=Directory Manager</code> should not be used in production systems.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca105=Bind User Password
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca105.help=The password of the administration account.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca106=Attribute Used to Retrieve User Profile
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca106.help=The LDAP module will use this attribute to search of the profile of an authenticated user.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca106.help.txt=This is the attribute used to find the profile of the authenticated user. Normally this will be the same attribute used to \
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncfind the user account. The value will be the name of the user used for authentication.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca107=Attributes Used to Search for a User to be Authenticated
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca107.help=The attributes specified in this list form the LDAP search filter.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca107.help.txt=The default value of uid will form the following search filter of <code>uid=<i>user</i></code>, if there are multiple \
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncvalues such as uid and cn, the module will create a search filter as follows <code>(|(uid=<i>user</i>)(cn=<i>user</i>))</code>
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca108=User Search Filter
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca108.help=This search filter will be appended to the standard user search filter.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca108.help.txt=This attribute can be used to append a custom search filter to the standard filter. For example: \
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync<code>(objectClass=person)</code>would result in the following user search filter:<br/><br/>\
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync<code>(&(uid=<i>user</i>)(objectClass=person))</code>
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca109=Search Scope
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca109.help=The level in the Directory Server that will be searched for a matching user profile.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca109.help.txt=This attribute controls how the directory is searched.<br/><br/>\
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync<ul><li><code>OBJECT</code>: Only the Base DN is searched.</li>\
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync<li><code>ONELEVEL</code>: Only the single level below (and not the Base DN) is searched</li>\
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync<li><code>SUBTREE</code>: The Base DN and all levels below are searched</li></ul>
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca110=SSL/TLS Access to Active Directory Server
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca110.help=Ensures the SSL/TLS will be used to establish connections to the LDAP server.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca110.help.txt=If this property is enabled; all connections to the Active Directory server will be over SSL/TLS. The SSL certificate on \
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncthe Active Directory server must be valid or the certificate must be trusted and stored in the OpenAM local certificate file.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca111=Return User DN to DataStore
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca111.help=Controls whether the DN or the username is returned as the authentication principal.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca114=User Creation Attributes
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca114.help=Controls the mapping of local attribute to external attribute for dynamic profile creation.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca114.help.txt=If dynamic profile creation is enabled; this feature allows for a mapping between the attribute/values retrieved from \
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncthe users authenticated profile and the attribute/values that will be provisioned into their matching account in the data store.\
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync<br/><br/>The format of this property is: <br/><br/><code> local attr1|external attr1</code>
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca118=LDAP Connection Heartbeat Interval
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca118.help=Specifies how often should OpenAM send a heartbeat request to the directory.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca118.help.txt=Use this option in case a firewall/loadbalancer can close idle connections, since the heartbeat \
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncrequests will ensure that the connections won't become idle. Use along with the Heartbeat Time Unit parameter to \
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncdefine the correct interval. Zero or negative value will result in disabling heartbeat requests.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca119=LDAP Connection Heartbeat Time Unit
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca119.help=Defines the time unit corresponding to the Heartbeat Interval setting.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca119.help.txt=Use this option in case a firewall/loadbalancer can close idle connections, since the heartbeat \
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncrequests will ensure that the connections won't become idle.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca1191=second
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca1192=minute
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncAcctInactive=Account in-activated or locked. Unlock or activate the account.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync## Note level should have the highest
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync## number for i18N key since it should
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync## be the last attribute when viewed in
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsync## the adminconsole
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca500=Authentication Level
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca500.help=The authentication level associated with this module.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsynca500.help.txt=Each authentication module has an authentication level that can be used to indicate the level of security \
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncassociated with the module; 0 is the lowest (and the default).
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncInappAuth=Inappropriate Authentication
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncnoUserMatchFound=User not found.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncmultipleUserMatchFound=Multiple matches found for the user. Contact your system administrator to fix the problem.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncNosecserver=No secondary server provided.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncchoiceObject=OBJECT
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncchoiceOneLevel=ONELEVEL
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncchoiceSubTree=SUBTREE
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncHostInvalid=Invalid host name.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncHostUnknown=Unknown host {0}
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncSchBaseInvalid=Invalid search base.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncPwdInvalid=Invalid user password.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncFConnect=Connection failed.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncCredInvalid=Invalid credentials.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncUsrNotExist=User does not exist.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncFAuth=Authentication failed.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncUNAttr=User naming attribute is null.
e083a0c2c99cea982dcf8e12ec3452cc575b5663vboxsyncUSchAttr=User search attributes must have at least one value.