Dell PowerConnect W Clearpass 100 Software 3.9 Deployment Guide - Page 193
Advanced LDAP URL Syntax, Viewing the LDAP Server List
View all Dell PowerConnect W Clearpass 100 Software manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 193 highlights
Once you have completed the form, check your settings by clicking the Test Settings button. Use the Test Username and Test Password fields to supply a username and password for the authentication check. If the authentication is successful, the operator profile assigned to the username will be displayed. If the authentication fails, an error message will be displayed. See "LDAP Operator Server Troubleshooting" in this chapter for information about common error messages and troubleshooting steps to diagnose the problem. Click the Save Changes button to save this LDAP Server. If the server is marked as enabled, subsequent operator login attempts will use this server for authentication immediately. Advanced LDAP URL Syntax For Microsoft Active Directory, the LDAP server connection will use a default distinguished name of the form dc=domain,dc=com, where the domain name components are taken from the bind username. To specify a different organizational unit within the directory, include a distinguished name in the LDAP server URL, using a format such as: ldap://192.168.88.1/ou=IT%20Services,ou=Departments,dc=server,dc=com To specify a secure connection over SSL/TLS, use the prefix ldaps://. To specify the use of LDAP v3, use the prefix ldap3://, or ldap3s:// if you are using LDAP v3 over SSL/TLS. When Microsoft Active Directory is selected as the Server Type, LDAP v3 is automatically used. An LDAP v3 URL has the format ldap://host:port/dn?attributes?scope?filter?extensions. dn is the base X.500 distinguished name to use for the search. attributes is often left empty. scope may be 'base', 'one' or 'sub'. filter is an LDAP filter string, for example, (objectclass=*) extensions is an optional list of name=value pairs. Refer to RFC 2255 for further details. Viewing the LDAP Server List Once you have defined one or more LDAP servers, those servers will appear in the LDAP server list on the Administrator > Operator Logins > Servers page. . Select any of the LDAP servers in the list to display options to perform the following actions on the selected server: Edit-Changes the properties of an LDAP server. Delete-Removes the server from the LDAP server list. Duplicate-Creates a copy of an LDAP server. Disable-Temporarily disables a server while retaining its entry the server list. Enable-Reenables a disabled LDAP server. ClearPass Guest 3.9 | Deployment Guide Operator Logins | 193