User Interface
R&S
®
GP-E/GP-S
52User Manual v16.2.1 ─ 01
Field Description
"use TLS" / "use SSL" Optional: To encrypt communication with the directory server, select either of
the "use TLS" or "use SSL" checkboxes (or both).
Important: To use SSL encryption, select "use SSL" on your gateprotect Fire-
wall and configure this option on the directory server. If you select SSL on your
gateprotect Firewall only, the directory server cannot be reached.
"Port" From the drop-down list, select the port number to be used for communication.
The Default LDAP port (389) is pre-selected for convenience but you
can select one of the standard ports from the drop-down list or enter a Custom
Port number from 1 to 65535 directly in the input field which appears when
you select this option.
"LDAP Version" From the drop-down list, select the LDAP version used by your server. The
more secure Version 3 is pre-selected by default. Nearly all servers support
this version, so you should only change this setting if your server explicitly
requires Version 2.
> User / Group Objects
The "Schema" setting allows you to select and adjust the settings for various directory
services, such as Microsoft Active Directory, Novell eDirectory, OpenLDAP, RFC2307
NIS or a custom type. By default, RFC2307 NIS is pre-selected from the drop-down
list.
The available options depend on the selected schema. Most settings use standard val-
ues which are shown in read-only fields.
●
For Active Directory, only the following changes are allowed:
– Verify the "Qualified User Login Attribute" which is set to
userPrincipalName by default.
– The "Group Member Selector" determines which attribute is used to determine
a user's group membership if the schema does not include this information
automatically. None is pre-selected by default from the drop-down list.
●
For Novell eDirectory, you can adjust the following settings:
– The "Qualified User Login Attribute"
– The "Framed User IP" which is used to specify the user's IP address.
– The "Group Member Selector" determines which attribute is used to determine
a user's group membership if the schema does not include this information
automatically. By default, None is pre-selected from the drop-down list.
●
The OpenLDAP and RFC2307 NIS schemas only allow the "Group Member Selec-
tor" to be changed. None is pre-selected by default from the drop-down list.
●
If setting up a custom type schema, you can configure the following elements:
– The "User Object Class"
– Optional: The "Qualified User Login Attribute"
– Optional: The "Framed User IP"
– Optional: The "Group Member Attribute"
– The "User Login Attribute"
– Optional: The "User Group Attribute"
Menu Reference
To Next Page
Loading...