Chapter 3: DSView Software Servers 57
To add an LDAP external authentication service:
1. From the User Authentication Services window, click Add. The Add Authentication Service
Wizard will appear. Click Next.
2. The Provide Authentication Service Name and Type window will open.
a. Type a name for the external authentication service.
b. Select LDAP from the Type drop-down menu.
c. Click Next.
3. The Specify LDAP Connection Settings window will open.
a. Type the address of the LDAP host in dot notation format (xx.xx.xx.xx) or type the DNS
host name in the Host Address field.
b. Type the number of the port you wish to use for connecting to the LDAP host in the Port
Number field.
c. Specify an SSL encryption mode:
•Click Do Not Use SSL to have authentication performed using unencrypted clear text
instead of SSL encryption. This method is the least secure and automatically sets the
Port Number field to a default port number of 389.
•Click Use SSL in Trust All Mode to use SSL encryption for data transmission. All
server certificates will be trusted and automatically accepted by the DSView manage-
ment software for transmitting data. This SSL method provides medium security and
automatically sets the Port Number field to a default port number of 636.
This encryption mode is not recommended for wide area networks (WANs).
•Click Use SSL in Certificate-based Trust Mode to use SSL encryption for data trans-
mission. The DSView management software will approve the server and then the cer-
tificate before transmitting data. This SSL method provides maximum security and
automatically sets the Port Number field to a default port number of 636.
d. Click Enable Chasing of Referrals if you wish to allow the LDAP server to refer DSView
software clients to additional directory servers.
e. Click Next.
If you selected Use SSL in Certificate-based Trust Mode, continue to step 4.
If you selected Do Not Use SSL or Use SSL in Trust All Mode, go to step 8.
4. The Accept Certificate window will open and list all servers that belong to the domain.
5. Click Next to accept the certificate.
6. The Specify LDAP User Schema window will open.
a. Type the Base distinguished name (DN) from which to begin searches
. This is a required
field unless the Directory Service has been configured to allow anonymous search. Each
Search DN value must be separated by a comma.
b. Type the key attribute. The default value is common name (cn).
To Next Page
Loading...