ZyXEL ENC User Guide - Page 289
Table 153, LABEL, DESCRIPTION, Application, ENC User's Guide, Note: This is only for LDAP.
View all ZyXEL ENC manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 289 highlights
Chapter 8 Application The following table describes the labels in this screen. Table 153 AAA Server: Add - AD Server/LDAP Server LABEL DESCRIPTION Profile Name Enter a descriptive name (up to 30 alphanumerical characters) for identification purposes. Description Enter the description of each server, if any. You can use up to 60 printable ASCII characters. Server Address Enter the address of the AD server. Backup Server Address If the AD has a backup server, enter its address here. Port Specify the port number on the AD to which the NXC5200 sends authentication requests. Enter a number between 1 and 65535. Base DN This port number should be the same on all AD or LDAP server(s) in this group. Specify the directory (up to 127 alphanumerical characters). For example, o=ZyXEL, c=US. Use SSL Select Use SSL to establish a secure connection to the AD or LDAP server(s). Search time limit Specify the timeout period (between 1 and 300 seconds) before the NXC5200 disconnects from the AD server. In this case, user authentication fails. Search timeout occurs when either the user information is not in the AD or the AD is down. Bind DN Specify the bind DN for logging into the AD server. Enter up to 127 alphanumerical characters. For example, cn=zyAdmin specifies zyAdmin as the user name. Password If required, enter the password (up to 15 alphanumerical characters) for the NXC5200 to bind (or log in) to the AD server. Login Name Attribute Enter the type of identifier the users are to use to log in. For example "name" or "e-mail address". Alternative Login If there is a second type of identifier that the users can use to log in, enter it here. For Name Attribute example "name" or "e-mail address". Group Membership Attribute Enter the name of the attribute that the NXC5200 is to check to determine to which group a user belongs. The value for this attribute is called a group identifier; it determines to which group a user belongs. You can add ext-group-user user objects to identify groups based on these group identifier values. Enable For example you could have an attribute named "memberOf" with values like "sales", "RD", and "management". Then you could also create a ext-group-user user object for each group. One with "sales" as the group identifier, another for "RD" and a third for "management". Select this to enable domain authentication for MSChap. User Name Note: This is only for LDAP. Enter the user name for the user who has rights to add a machine to the domain. User Password Note: This is only for LDAP. Enter the password for the associated user name. Realm Note: This is only for LDAP. Enter the realm IP address. OK Cancel Note: This is only for LDAP. Click OK to save the changes. Click Cancel to discard the changes. ENC User's Guide 289