Server Technology switched pro2 User Manual - page 100
Switched PRO2 – User Guide
Using the Web Interface
•
100
Network > LDAP
The LDAP page determines the protocol settings required to enable LDAP support.
Note: The Network > LDAP page is for LDAP network protocol management only. To manage LDAP
user groups, see the Access > LDAP Groups page.
To configure LDAP:
1. LDAP: Enabled or Disabled displays on the page to show current LDAP status.
2. Primary/Secondary Host: Provide the hostname/IP address
of the Directory Services server.
3. Port:
Set the port number for the LDAP server, 1-65535 (Default is 389).
4. Bind Type: Sets the bind method for the LDAP server. The PRO2 supports three standard LDAP bind
methods:
• Simple: Uses unencrypted delivery of username-password over the network to the LDAP server for
authentication, showing user credentials in plain text.
• TLS/SSL: (LDAP over TLS/SSL) Uses a trusted authority certificate to provide encryption of LDAP
authentication.
• MD5: Provides strong protection using 1-way hash encoding that does not transmit the username-
password over the network.
5. From the Bind Type drop-down menu, select Simple, TLS/SSL, or MD5.
If TLS/SSL is selected, MD5
binding is disabled.
6. Search Bind: Provide the base distinguished name (DN) for the search bind and the Search Bind Password
for the base DN. To change the password, type the new password, and check the Change checkbox.
7. User Search: Provide the distinguished name (DN) for the user search.
8. Filter: The User Search Filter sets the filter used for the username search at login.
9. Group Membership Attribute: Sets the user class distinguished name (DN) or names of groups a user is a
member of.
10. Group Search: Click to enable the setting of the bind to search groups for the username (in addition to
searching the usernames for its list of group memberships).
The Change Access Configuration link
takes you to the Access page to
determine user access method for LDAP.