ZyXEL Communications ZyWALL 300 User Manual

 Chapter 38 AAA Server

ZyWALL USG 300 User’s Guide

Figure 390   Basic Directory Structure 

A DN uniquely identifies an entry in a directory. A DN consists of attribute-value pairs 
separated by commas. The leftmost attribute is the Relative Distinguished Name (RDN). This 
provides a unique name for entries that have the same “parent DN” (“cn=domain1.com, 
ou=Sales, o=MyCompany

” in the following examples). 

cn=domain1.com, ou = Sales, o=MyCompany, c=US

cn=domain1.com, ou = Sales, o=MyCompany, c=JP

A base DN specifies a directory. A base DN usually contains information such as the name of 
an organization, a domain name and/or country. For example, o=MyCompany, c=UK where 
o

 means organization and c means country. 

A bind DN is used to authenticate with an LDAP/AD server. For example a bind DN of 
cn=zywallAdmin

 allows the ZyWALL to log into the LDAP/AD server using the user 

name of zywallAdmin. The bind DN is used in conjunction with a bind password. When a 
bind DN is not specified, the ZyWALL will try to log in as an anonymous user. If the bind 
password is incorrect, the login will fail.

To configure the Active Directory or LDAP default server settings, click Object > AAA 
Server > Active Directory (or LDAP) to display the screen as shown. 

Root

US

Japan

Sprint

UPS

NEC

Sales

RD3

QA

CSO

Sales

RD

Countries (c)

Organizations (o) Organization Units (ou) Unique 

Common Name 
(cn)