Cisco Cisco Content Security Management Appliance M390 Guía Del Usuario
11-6
AsyncOS 9.5.x for Cisco Content Security Management Appliances User Guide
Chapter 11 Integrating with LDAP
Configuring LDAP Queries
Sample Active Directory End-User Authentication Settings
This section shows sample settings for an Active Directory server and the end-user authentication query.
This example uses password authentication for the Active Directory server, the default query string for
end-user authentication for Active Directory servers, and the
This example uses password authentication for the Active Directory server, the default query string for
end-user authentication for Active Directory servers, and the
mail
and
proxyAddresses
email attributes.
Sample OpenLDAP End-User Authentication Settings
This section shows sample settings for an OpenLDAP server and the end-user authentication query. This
example uses anonymous authentication for the OpenLDAP server, the default query string for end-user
authentication for OpenLDAP servers, and the
example uses anonymous authentication for the OpenLDAP server, the default query string for end-user
authentication for OpenLDAP servers, and the
mail
and
mailLocalAddress
email attributes.
Spam Quarantine Alias Consolidation Queries
If you use spam notifications, the spam quarantine alias consolidation query consolidates the email
aliases so that recipients do not receive quarantine notices for each alias. For example, a recipient might
receive mail for the following email addresses: john@example.com, jsmith@example.com, and
john.smith@example.com. When you use alias consolidation, the recipient receives a single spam
notification at a chosen primary email address for messages sent to all of the user’s aliases.
aliases so that recipients do not receive quarantine notices for each alias. For example, a recipient might
receive mail for the following email addresses: john@example.com, jsmith@example.com, and
john.smith@example.com. When you use alias consolidation, the recipient receives a single spam
notification at a chosen primary email address for messages sent to all of the user’s aliases.
To consolidate messages to a primary email address, create a query to search for a recipient’s alternate
email aliases, and then enter the attribute for the recipient’s primary email address in the Email Attribute
field.
email aliases, and then enter the attribute for the recipient’s primary email address in the Email Attribute
field.
Table 11-1
Example LDAP Server and Spam Quarantine End-User Authentication Settings:
Active Directory
Active Directory
Authentication Method
Use Password
(Need to create a low-privilege user to bind for searching, or configure
anonymous searching.)
(Need to create a low-privilege user to bind for searching, or configure
anonymous searching.)
Server Type
Active Directory
Port
3268
Base DN
[Blank]
Connection Protocol
[Blank]
Query String
(sAMAccountName={u})
Email Attribute(s)
mail,proxyAddresses
Table 11-2
Example LDAP Server and Spam Quarantine End-User Authentication Settings:
OpenLDAP
OpenLDAP
Authentication Method
Anonymous
Server Type
OpenLDAP
Port
389
Base DN
[Blank] (Some older schemas will want to use a specific Base DN.)
Connection Protocol
[Blank]
Query String
(uid={u})
Email Attribute(s)
mail,mailLocalAddress