LDAP Script Return Codes
Table 126 provides a list of the LDAP script return codes.
Table 126: LDAP Script Return Codes
Script Return Code | Action | Plug-in Return Code |
---|---|---|
SBR_RET_SUCCESS | Accept the user. | SBR_RET_SUCCESS |
SBR_RET_DO_NOT_AUTHENTICATE | Hard reject. Do not invoke another authentication method. | SBR_RET_DO_NOT_AUTHENTICATE |
SBR_RET_TRY_NEXT_AUTH_METHOD | Return from the LDAP plug-in and invoke the next authentication method. Do not process [Failure] section or try last resort server. | SBR_RET_NOT_AUTHENTICATED |
SBR_RET_FAILURE | A communication error occurred. Retry script with next server in list, or go to [Failure] section if no server is available. | If another server is available, the plug-in return code depends on the script return code when the script is re-executed. If no server is available, process [Failure] section and return SBR_RET_SUCCESS or SBR_RET_NOT_AUTHENTICATED depending on configuration. |
SBR_RET_NOT_AUTHENTICATED | Retry script with last resort server, if defined. Otherwise, go to the next authentication method. | If LastResort is defined, the plug-in return code depends on the script return code when the script is re-executed. If LastResort is not defined, return SBR_RET_NOT_AUTHENTICATED. |