Lexmark X925 Lexmark Document Distributor - Page 44
Enabling LDAP server authentication for LMC, Example
View all Lexmark X925 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 44 highlights
4 Re-type the new password to confirm it. 5 Click Apply. Enabling LDAP server authentication for LMC The administrator can set up a connection with an LDAP server to authenticate user names and passwords other than those for the administrator account. 1 Select LDAP Setup from the System list. 2 Select the Enable LDAP Authentication check box. 3 If your LDAP server requires a secure connection, select Use Secure Connection (SSL/TLS). 4 Type the LDAP Server Address and Server Port. Note: Port 389 is typically used for non-secure communication, and port 636 is typically used for secure communication. 5 Beside Search Base, type the distinguished name where the directory search should begin, such as o=MyOrganization. 6 Beside User Search Filter, type the attribute used in the directory to identify a user name, such as cn, sn, uid, or sAMAccountName. 7 Beside User Search Base, type the relative distinguished name where a Subtree search for a user should begin in the directory, such as ou=Employees. 8 To filter the search to users in specific groups that use the groupOfNames or groupOfUniqueNames object class: a Beside Group Search Filter, type the attribute used to identify a member of the group, such as member or uniquemember. b Beside Group Search Base, type the relative distinguished name where a Subtree search should begin in the directory for groups, such as ou=Groups. c Beside Member of Groups(s), type a comma-delimited list of group names to search. The user name must be a member of at least one of the groups listed. Example • Search Base: o=MyOrganization • User Search Filter: uid • User Search Base: ou=Employees • Group Search Filter: uniquemember • Group Search Base: ou=Groups • Member of Group(s): Dept A,Dept C If the user name testuser is used to log on to LMC, the user can be authenticated if each of the following is true: - The distinguished name uid=testuser,ou=Employees,o=MyOrganization is found in the directory. - The distinguished name cn=Dept A,ou=Groups,o=MyOrganization or cn=Dept C,ou=Groups,o=MyOrganization is found in the directory and contains the attribute uniquemember: uid=testuser,ou=Employees,o=MyOrganization. Monitoring and maintaining the system 44