Cisco Cisco Email Security Appliance X1050 Guía Del Usuario
27-48
User Guide for AsyncOS 10.0 for Cisco Email Security Appliances
Chapter 27 LDAP Queries
Identifying a Sender’s User Distinguished Name for RSA Enterprise Manager
Testing Servers and Queries
Use the Test Server(s) button on the Add (or Edit) LDAP Server Profile page (or the
test
subcommand
in the CLI) to test the connection to an LDAP server. If you use multiple LDAP servers, AsyncOS tests
each server and displays individual results for each server. AsyncOS will also test the query on each
LDAP server and display the individual results.
each server and displays individual results for each server. AsyncOS will also test the query on each
LDAP server and display the individual results.
Failover
To ensure that LDAP queries are resolved, you can configure your LDAP profile for failover. If the
connection to the LDAP server fails, or the query returns certain error codes (for example, Unavailable
or Busy), the appliance attempts to query the next LDAP server specified in the list.
connection to the LDAP server fails, or the query returns certain error codes (for example, Unavailable
or Busy), the appliance attempts to query the next LDAP server specified in the list.
The appliance attempts to connect to the first server in the list of LDAP servers for a specified period of
time. If the appliance cannot connect to the first LDAP server in the list, or the query returns certain error
codes (for example, Unavailable or Busy), the appliance attempts to connect to the next LDAP server in
the list. By default, the appliance always attempts to connect to the first server in the list, and it attempts
to connect to each subsequent server in the order they are listed. To ensure that the appliance connects
to your primary LDAP server by default, ensure that you enter it as the first server in your list of LDAP
servers.
time. If the appliance cannot connect to the first LDAP server in the list, or the query returns certain error
codes (for example, Unavailable or Busy), the appliance attempts to connect to the next LDAP server in
the list. By default, the appliance always attempts to connect to the first server in the list, and it attempts
to connect to each subsequent server in the order they are listed. To ensure that the appliance connects
to your primary LDAP server by default, ensure that you enter it as the first server in your list of LDAP
servers.
If the appliance connects to a second or subsequent LDAP server, it remains connected to that server
until it reaches a timeout period. After it reaches the timeout, it attempts to reconnect to the first server
in the list.
until it reaches a timeout period. After it reaches the timeout, it attempts to reconnect to the first server
in the list.
Note
Only attempts to query a specified LDAP server fail over. Attempts to query referral or continuation
servers associated with the specified LDAP server do not fail over.
servers associated with the specified LDAP server do not fail over.
Related Topics
•
Configuring the Appliance for LDAP Failover
To configure the appliance for LDAP failover, complete the following steps in the GUI:
Procedure
Step 1
From System Administration > LDAP, select the LDAP server profile you want to edit.