Cisco Cisco Email Security Appliance C650 Guía Del Usuario
4-247
Cisco IronPort AsyncOS 7.3 for Email Advanced Configuration Guide
OL-23081-01
Chapter 4 LDAP Queries
Configuring AsyncOS To Work With Multiple LDAP
Servers
Servers
When you configure an LDAP profile, you can configure the IronPort appliance
to connect to a list of multiple LDAP servers. To use multiple LDAP servers, you
must configure LDAP servers to contain the same information, use the same
structure, and use the same authentication information. (third party products exist
that can consolidate the records).
to connect to a list of multiple LDAP servers. To use multiple LDAP servers, you
must configure LDAP servers to contain the same information, use the same
structure, and use the same authentication information. (third party products exist
that can consolidate the records).
When you configure the IronPort appliance to connect to redundant LDAP
servers, you can configure the LDAP configuration for failover or load balancing.
servers, you can configure the LDAP configuration for failover or load balancing.
You can use multiple LDAP servers to achieve the following results:
•
Failover. When you configure the LDAP profile for failover, the IronPort
appliance fails over to the next LDAP server in the list if it cannot connect to
the first LDAP server.
appliance fails over to the next LDAP server in the list if it cannot connect to
the first LDAP server.
•
Load Balancing. When you configure the LDAP profile for load balancing,
the IronPort appliance distributes connections across the list of LDAP servers
when it performs LDAP queries.
the IronPort appliance distributes connections across the list of LDAP servers
when it performs LDAP queries.
You can configure redundant LDAP servers from the System Administration >
LDAP page or from the CLI
LDAP page or from the CLI
ldapconfig
command.
Testing Servers and Queries
Use the Test Server(s) button on the Add (or Edit) LDAP Server Profile page (or
the
the
test
subcommand in the CLI) to test the connection to an LDAP server. If you
use multiple LDAP servers, AsyncOS tests each server and displays individual
results for each server. AsyncOS will also test the query on each LDAP server and
display the individual results.
results for each server. AsyncOS will also test the query on each LDAP server and
display the individual results.
Query String
(mail={a})
Email Attribute
mail
Table 4-14
Example LDAP Server and Spam Quarantine Alias
Consolidation Settings: OpenLDAP
Consolidation Settings: OpenLDAP