Fortinet Technologies Inc. Page 127 FortiVoice Enterprise Phone System 4.0.0 Administration Guide
Configuring advanced options
The following procedure is part of the LDAP profile configuration process. For general
procedures about how to configure an LDAP profile, see “Configuring LDAP profiles” on
page 122.
1. Go to Phone System > Profiles > LDAP.
2. Click New to create a new profile or double click on an existing profile to edit it.
3. Click the arrow to expand the Advanced Options section.
4. Configure the following:
Search user and try
bind DN
Select to form the user’s bind DN by using the DN retrieved for that
user by configuring the following:
• Schema: If your LDAP directory’s user objects use a common
schema style:
• InetOrgPerson
• Active Directory
Select the schema style. This automatically configures the query
string to match that schema style.
If your LDAP server uses any other schema style, select User
Defined, then manually configure the query string.
• LDAP user query: Enter an LDAP query filter that selects a set of
user objects from the LDAP directory.
The query string filters the result set, and should be based upon
any attributes that are common to all user objects but also
exclude non-user objects.
For example, if user objects in your directory have two
distinguishing characteristics, their objectClass and
extension attributes, the query filter might be:
(& (objectClass=inetOrgPerson) (telephonenumber=$u))
where $u is the FortiVoice variable for a user's extension.
This option is preconfigured and read-only if you have selected
from Schema any schema style other than User Defined.
• Scope: Select which level of depth to query, starting from
Base DN.
• One level: Query only the one level directly below the Base DN
in the LDAP directory tree.
• Subtree: Query recursively all levels below the Base DN in the
LDAP directory tree.
• Derefer: Select the method to use, if any, when dereferencing
attributes whose values are references.
• Never: Do not dereference.
• Always: Always dereference.
• Search: Dereference only when searching.
• Find: Dereference only when finding the base search object.
To Next Page
Loading...
