Cisco Cisco Web Security Appliance S670 User Guide
20-49
Cisco IronPort AsyncOS 7.1 for Web User Guide
OL-23207-01
Chapter 20 Authentication
LDAP Authentication
describes the group object settings.
Group Object Setting
Description
Group Membership
Attribute Within
Group Object
Attribute Within
Group Object
Choose the LDAP attribute which lists all users that
belong to this group.
belong to this group.
Choose one of the following values:
•
member and uniquemember. Unique identifiers in
the LDAP directory that specify group members.
the LDAP directory that specify group members.
•
custom. A custom identifier such as
UserInGroup
.
Attribute that
Contains the Group
Name
Contains the Group
Name
Choose the LDAP attribute which specifies the group
name that can be used in the policy group configuration.
name that can be used in the policy group configuration.
Choose one of the following values:
•
cn. A unique identifier in the LDAP directory that
specifies the name of a group.
specifies the name of a group.
•
custom. A custom identifier such as
FinanceGroup
.
Query String to
Determine if Object is
a Group
Determine if Object is
a Group
Choose an LDAP search filter that determines if an
LDAP object represents a user group.
LDAP object represents a user group.
Choose one of the following values:
•
objectclass=groupofnames
•
objectclass=groupofuniquenames
•
objectclass=group
•
custom. A custom filter such as
objectclass=person
.
Note: The query defines the set of authentication groups
which can be used in policy groups.
which can be used in policy groups.