| Name | Type | Description | Notes |
|---|---|---|---|
| name | String | Source's display Name. | |
| slug | String | Internal source name, used in URLs. | |
| enabled | Option<bool> | [optional] | |
| authentication_flow | Option<uuid::Uuid> | Flow to use when authenticating existing users. | [optional] |
| enrollment_flow | Option<uuid::Uuid> | Flow to use when enrolling new users. | [optional] |
| policy_engine_mode | Option<models::PolicyEngineMode> | [optional] | |
| user_matching_mode | Option<models::UserMatchingModeEnum> | How the source determines if an existing user should be authenticated or a new user enrolled. * identifier - Use the source-specific identifier * email_link - Link to a user with identical email address. Can have security implications when a source doesn't validate email addresses. * email_deny - Use the user's email address, but deny enrollment when the email address already exists. * username_link - Link to a user with identical username. Can have security implications when a username is used with another source. * username_deny - Use the user's username, but deny enrollment when the username already exists. |
[optional] |
| user_path_template | Option<String> | [optional] | |
| server_uri | String | ||
| peer_certificate | Option<uuid::Uuid> | Optionally verify the LDAP Server's Certificate against the CA Chain in this keypair. | [optional] |
| client_certificate | Option<uuid::Uuid> | Client certificate to authenticate against the LDAP Server's Certificate. | [optional] |
| bind_cn | Option<String> | [optional] | |
| bind_password | Option<String> | [optional] | |
| start_tls | Option<bool> | [optional] | |
| sni | Option<bool> | [optional] | |
| base_dn | String | ||
| additional_user_dn | Option<String> | Prepended to Base DN for User-queries. | [optional] |
| additional_group_dn | Option<String> | Prepended to Base DN for Group-queries. | [optional] |
| user_object_filter | Option<String> | Consider Objects matching this filter to be Users. | [optional] |
| group_object_filter | Option<String> | Consider Objects matching this filter to be Groups. | [optional] |
| group_membership_field | Option<String> | Field which contains members of a group. | [optional] |
| object_uniqueness_field | Option<String> | Field which contains a unique Identifier. | [optional] |
| sync_users | Option<bool> | [optional] | |
| sync_users_password | Option<bool> | When a user changes their password, sync it back to LDAP. This can only be enabled on a single LDAP source. | [optional] |
| sync_groups | Option<bool> | [optional] | |
| sync_parent_group | Option<uuid::Uuid> | [optional] | |
| property_mappings | Option<Vecuuid::Uuid> | [optional] | |
| property_mappings_group | Option<Vecuuid::Uuid> | Property mappings used for group creation/updating. | [optional] |