Cisco Cisco Email Security Appliance C160 Mode D'Emploi

Configured SMTP Authentication methods are then used to create SMTP Auth 
profiles via the 

smtpauthconfig

 command for use within HAT mail flow policies 

(see 

).

If you are going to authenticate with an LDAP server, select the SMTPAUTH 
query type on the Add or Edit LDAP Server Profile pages (or in the 

ldapconfig

 

command) to create an SMTP Authentication query. For each LDAP server you 
configure, you can configure a SMTPAUTH query to be used as an SMTP 
Authentication profile. 

There are two kinds of SMTP authentication queries: LDAP bind and Password 
as attribute. When you use password as attribute, the Cisco IronPort appliance will 
fetch the password field in the LDAP directory. The password may be stored in 
plain text, encrypted, or hashed.When you use LDAP bind, the IronPort appliance 
attempts to log into the LDAP server using the credentials supplied by the client.

The convention in OpenLDAP, based on RFC 2307, is that the type of coding is 
prefixed in curly braces to the encoded password (for example, 
“{SHA}5en6G6MezRroT3XKqkdPOmY/BfQ=”). In this example, the password 
portion is a base64 encoding of a plain text password after application of SHA.