Cisco Cisco Email Security Appliance X1070 Guía Del Usuario
Chapter 3 LDAP Queries
3-170
Cisco IronPort AsyncOS 7.1 for Email Advanced Configuration Guide
OL-22164-02
Configuring Global Settings
The LDAP global settings define how the appliance handles all LDAP traffic. To
configure global settings for LDAP:
configure global settings for LDAP:
Step 1
On the System Administraiton > LDAP page, click Edit Settings.
The Edit LDAP Settings page is displayed:
Figure 3-3
Edit LDAP Settings Page
Step 2
Select the IP interface to use for LDAP traffic. The appliance automatically
chooses an interface by default.
chooses an interface by default.
Step 3
Select the TLS certificate to use for the LDAP interface (TLS certificates added
via the Network > Certificates page or the
via the Network > Certificates page or the
certconfig
command in the CLI are
available in the list, see
).
Step 4
Submit and commit your changes.
Example of Creating an LDAP Server Profile
In the following example, the System Administration > LDAP page is used to
define an LDAP server for the appliance to bind to, and queries for recipient
acceptance, routing, and masquerading are configured.
define an LDAP server for the appliance to bind to, and queries for recipient
acceptance, routing, and masquerading are configured.
Note
There is a 60 second connection attempt time-out for LDAP connections (which
covers the DNS lookup, the connection itself, and, if applicable, the
authentication bind for the appliance itself). After the first failure, AsyncOS
immediately starts trying other hosts in the same server (if you specified more
than one in the comma separated list). If you only have one host in the server,
AsyncOS continues attempting to connect to it.
covers the DNS lookup, the connection itself, and, if applicable, the
authentication bind for the appliance itself). After the first failure, AsyncOS
immediately starts trying other hosts in the same server (if you specified more
than one in the comma separated list). If you only have one host in the server,
AsyncOS continues attempting to connect to it.