Dell PowerConnect W Clearpass 100 Software 3.9 Deployment Guide - Page 196
LDAP Translation Rules, Administrator > Operator Logins > Translation
View all Dell PowerConnect W Clearpass 100 Software manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 196 highlights
Verify that the Bind DN is correct - the correct DN will depend on the structure of your directory, and is only required if the directory does not permit anonymous bind. Verify that the Base DN is correct - the Base DN for user searches is fixed and must be specified as part of the Server URL. If you need to search in different Base DNs to match different kinds of operators, then you should define multiple LDAP Servers and use the priority of each to control the order in which the directory searches are done. LDAP Translation Rules LDAP translation rules specify how to determine operator profiles based on LDAP attributes for an authenticated operator. Translation rules may be created by navigating to Administrator > Operator Logins > Translation Rules then clicking the Create new translation rule link. To create a new LDAP translation rule: 1. In the Name field, enter a self-explanatory name for the translation rule. In the example above the translation rule is to check that the user is an Administrator, hence the name MatchAdmin. 2. Select the Enabled check box to enable this rule once you have created it. If you do not select this check box, the rule you create will appear in the rules list, but will not be active until you enable it. 3. Click the Matching rule drop-down list and select a rule. The Matching Rule field can be one of: (blank) - always matches contains - case-insensitive substring match anywhere in string matches - regular expression match, where the value is a Perl-compatible regular expression including delimiters (for example, to match the regular expression "admin" case-insensitively, use the value "/admin/i"; See "Regular Expressions" in the Reference chapter for more details about regular expressions) equals - case-insensitive string comparison, matches on equality does not equal - case-insensitive string comparison, matches on inequality less than - numerical value is less than the match value 196 | Operator Logins ClearPass Guest 3.9 | Deployment Guide