Server Technology Switched Rack PDU Installation And Operation Manual - page 118
118 Advanced Operations
Switched PDU
Installation and Operations Manual
Setting the LDAP bind type:
The Set LDAP Bind command specifies the LDAP bind request that authenticates a client with the LDAP server.
The PDU supports three standard LDAP bind methods:
Simple: Uses unencrypted delivery of username-password over the network to the LDAP server for authentication,
showing user credentials in plain text.
LDAP over TLS/SSL: Uses a trusted authority certificate to provide encryption of LDAP authentication.
MD5: Provides strong protection using 1-way hash encoding that does not transmit the username-password over the
network.
To set the bind type:
At the Switched CDU: prompt, type set ldap bind, followed by simple, TLS,or md5, and press Enter.
NOTE: If MD5 binding is enabled, LDAP over TLS/SSL is disabled.
Setting the search bind Fully-Qualified Domain Name (DN):
The Set LDAP BindDN command is used to set the Fully-Qualified Domain Name (FQDN) for user accounts to bind
with. This is required for directory services that do not support anonymous binds. This field is used ONLY with
Simple Binds. Maximum string length is 124 characters.
NOTE: If left blank, then an anonymous bind will be attempted. This field is used only with Simple binds.
To set the search bind DN:
At the Switched CDU: prompt, type set ldap binddn, and press Enter. At the following prompt, type the FQDN and
press Enter.
Example
The following sets the FQDN for MSAD to ‘cn=guest,cn=Users,dc=servertech,dc=com’:
Switched CDU: set ldap binddn
Enter Search Bind DN (Max characters 124):
cn=guest,cn=Users,dc=servertech,dc=com
Setting the search bind Distinguished Name (DN) password:
The Set LDAP BindPW command is used to set the password for the user account specified in the Search Bind DN.
Maximum password size is 20 characters.
To set the Bind Password DN:
At the Switched CDU: prompt, type set ldap bindpw and press Enter.At the following prompt, type the bind
password and press Enter.
Setting the group membership attribute:
The Set LDAP GroupAttr command is used to specify the name of user class attributes that lists distinguished names
(DN), or names of groups that a user is a member of. Maximum string length is 30 characters.
To set Group Membership Attribute:
At the Switched CDU: prompt, type set ldap groupattr and press Enter.At the following prompt,type the group
membership attribute and press Enter.
Example
The following sets the group membership attribute for MSAD to ‘memberof’:
Switched CDU: set ldap groupattr
Enter Group Member Attr (Max character 30):
memberof