user-pubkey-match
To configure the attribute name, search filter, and base-DN for the public key match search operation in order
to send a search query to the Lightweight Directory Access Protocol (LDAP) server, use the
user-pubkey-match command. To disable this configuration, use the no form of this command.
user-pubkey-match attribute-name attribute-name search-filter filter base-DN base-DN-name
no user-pubkey-match
Syntax Description
Specifies the attribute name of the LDAP search map.
The name is alphanumeric, case sensitive, and has a
maximum of 128 characters.
attribute-name attribute-name
Specifies the filter for the LDAP search map. The
name is alphanumeric, case sensitive, and has a
maximum of 128 characters.
search-filter filter
Specifies the base designated name for the LDAP
search map. The name is alphanumeric, case sensitive,
and has a maximum of 128 characters.
base-DN base-DN-name
Command Default
None
Command Modes
LDAP search map configuration
Command History
ModificationRelease
This command was introduced.5.0(2)
Usage Guidelines
To use this command, you must enable LDAP.
This command does not require a license.
Examples
This example shows how to configure the attribute name, search filter, and base-DN for the public key match
search operation in order to send a search query to the LDAP server:
switch# conf t
switch(config)# ldap search-map s0
switch(config-ldap-search-map)# user-pubkey-match attribute-name sshPublicKey search-filter
(&(objectClass=inetOrgPerson)(cn=$userid)) base-DN dc=acme,dc=com
switch(config-ldap-search-map)#
Cisco Nexus 7000 Series Security Command Reference
977
U Commands
user-pubkey-match
To Next Page
Loading...
