You are here: Reference Manual > FME Server Core > Role-Based Access Control > Configurable Parameters for Active Directory Connections > SECURITY_AD_NAMING_CONTEXT

SECURITY_AD_NAMING_CONTEXT

Optional. When specified, explicitly sets the naming context.

When left unspecified, the Active Directory's default naming context is used.

The naming context restricts FME Server's access to the Active Directory to a particular section (sub-tree) of the directory. The naming context is the top-level entry of the sub-tree. For example, suppose the Active Directory is structured as follows:

Using Naming Context... Accessible Entries
A (default) A B C D E F
B B C D
E E F

Setting the naming context may provide performance gains for large Active Directory structures. In general, though, the default naming context is appropriate in common Windows domain configurations.

This configuration parameter expects the distinguished name (DN) of an entry to be used as the naming context. For example, CN=Users,DC=domain,DC=net.

To obtain a naming context:

  1. From AD Explorer, connect to the Active Directory.
  2. Browse the directory to determine the location of all users and security groups to be provided access to FME Server.
  3. Select an entry to be used as the naming context.
  4. The naming context appears under the 'distinguishedName' attribute.