EasyManua.ls Logo

AudioCodes Mediant 2600 - Configuring the LDAP Search Filter Attribute

AudioCodes Mediant 2600
646 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Version 6.8 205 Mediant 2600 E-SBC
User's Manual 15. Services
to configure DN base paths, and then click the Search DNs link (located at the bottom
of the page); the LDAP Search DN Table page opens.
3. Click Add; the following dialog box appears:
Figure 15-12: LDAP Search DN Table - Add Record
4. Configure an LDAP DN base path according to the parameters described in the table
below.
5. Click Submit, and then save ("burn") your settings to flash memory.
LDAP Search DN Table Parameter Descriptions
Parameter Description
Index
CLI: set internal-index
[LdapServersSearchD
Ns_Index]
Defines an index number for the new table record.
Note: Each table row must be configured with a unique index.
Base Path
CLI: set base-path
[LdapServersSearchD
Ns_Base_Path]
Defines the full path (DN) to the objects in the AD where the query is
done.
The valid value is a string of up to 256 characters.
For example: OU=NY,DC=OCSR2,DC=local. In this example, the DN
path is defined by the LDAP names, OU (organizational unit) and DC
(domain component).
15.4.5 Configuring the LDAP Search Filter Attribute
When the LDAP-based login username-password authentication succeeds, the device
searches the LDAP server for all groups of which the user is a member. The LDAP query is
based on the following LDAP data structure:
Search base object (distinguished name or DN, e.g.,
"ou=ABC,dc=corp,dc=abc,dc=com"): The DN defines the location in the directory
from which the LDAP search begins and is configured in 'Configuring LDAP DNs
(Base Paths) per LDAP Server' on page
204.
Filter (e.g., "(&(objectClass=person)(sAMAccountName=johnd))"): This filters the
search in the subtree to include only the login username (and excludes others). This is
configured by the 'LDAP Authentication Filter' parameter, as described in the following
procedure. You can use the dollar ($) sign to represent the username. For example,
the filter can be configured as "(sAMAccountName=$)", where if the user attempts to
log in with the username "SueM", the LDAP search is done only for the attribute
sAMAccountName that equals "SueM".
Attribute (e.g., "memberOf") to return from objects that match the filter criteria:
The attribute is configured by the 'Management Attribute' parameter in the LDAP
Configuration table (see 'Configuring LDAP Servers' on page
201).

Table of Contents

Other manuals for AudioCodes Mediant 2600

Preview: Quick Setup Guide
Quick Setup Guide8 pages

Related product manuals