193| Authentication Servers AOS-W 6.5.3.x| User Guide
Parameter Description
Filter A string searches for users in the LDAP database. The default filter string is:
(objectclass=*).
Default: N/A
Key Attribute A string searches for a LDAP server. For Active Directory, the value is
sAMAccountName.
Default: sAMAccountName
Timeout Timeout period of a LDAP request, in seconds.
Default: 20 seconds
Mode Enables or disables the server.
Default: enabled
Preferred Connection
Type
Preferred type of connection between the switch and the LDAP server. The default
order of connection type is:
1. ldap-s
2. start-tls
3. clear-text
The switch first tries to contact the LDAP server using the preferred connection type,
and only attempts to use a lower-priority connection type if the first attempt is not
successful.
NOTE: If you select clear-text as the preferred connection type, you must also
enable the allow-cleartext option.
Using the WebUI
1. Navigate to the Configuration > Security > Authentication > Servers page.
2. Select LDAP Server to display the LDAP Server List.
3. To configure an LDAP server, enter the name for the server and click Add.
4. Select the name to configure server parameters. Enter parameters as described in Table 47. Select the
Mode checkbox to activate the authentication server.
5. Click Apply.
The configuration does not take effect until you perform this step.
Using the CLI
(host)(config) #aaa authentication-server ldap <name>
Configuring a TACACS+ Server
Table 48 defines the TACACS+ server parameters.
To Next Page
Loading...