Cisco Cisco Email Security Appliance C160 Mode D'Emploi
3-6
Cisco IronPort AsyncOS 7.6 for Email Advanced Configuration Guide
OL-25137-01
Chapter 3 LDAP Queries
Step 11
Enter a maximum number of simultaneous connections.
If you configure the LDAP server profile for load balancing, these connections are distributed
among the listed LDAP servers. For example, if you configure 10 simultaneous connections and load
balance the connections over three servers, AsyncOS creates 10 connections to each server, for a
total of 30 connections.
among the listed LDAP servers. For example, if you configure 10 simultaneous connections and load
balance the connections over three servers, AsyncOS creates 10 connections to each server, for a
total of 30 connections.
Note
The maximum number of simultaneous connections includes LDAP connections used for LDAP
queries. However, the appliance may open more connections if you use LDAP authentication for
the Cisco IronPort Spam Quarantine.
queries. However, the appliance may open more connections if you use LDAP authentication for
the Cisco IronPort Spam Quarantine.
Step 12
Test the connection to the server by clicking the Test Server(s) button. If you specified multiple LDAP
servers, they are all tested. The results of the test appear in the Connection Status field. For more
information, see
servers, they are all tested. The results of the test appear in the Connection Status field. For more
information, see
Step 13
Create queries by marking the checkbox and completing the fields. You can select Accept, Routing,
Masquerade, Group, SMTP Authentication, External Authentication, Spam Quarantine End-User
Authentication, and Spam Quarantine Alias Consolidation.
Masquerade, Group, SMTP Authentication, External Authentication, Spam Quarantine End-User
Authentication, and Spam Quarantine Alias Consolidation.
Note
To allow the Cisco IronPort appliance to run LDAP queries when you receive or send messages,
you must enable the LDAP query on the appropriate listener. For more information, see
you must enable the LDAP query on the appropriate listener. For more information, see
Step 14
Test a query by clicking the Test Query button.
Enter the test parameters and click Run Test. The results of the test appear in the Connection Status
field. If you make any changes to the query definition or attributes, click Update. For more
information, see
field. If you make any changes to the query definition or attributes, click Update. For more
information, see
.
Note
If you have configured the LDAP server to allow binds with empty passwords, the query can pass
the test with an empty password field.
the test with an empty password field.
Step 15
Submit and commit your changes.
Note
Although the number of server configurations is unlimited, you can configure only one recipient
acceptance, one routing, one masquerading, and one group query per server.
acceptance, one routing, one masquerading, and one group query per server.
Testing LDAP Servers
Use the Test Server(s) button on the Add/Edit LDAP Server Profile page (or the
test
subcommand of
the
ldapconfig
command in the CLI) to test the connection to the LDAP server. AsyncOS displays a
message stating whether the connection to the server port succeeded or failed. If you configured multiple
LDAP servers, AsyncOS tests each server and displays individual results.
LDAP servers, AsyncOS tests each server and displays individual results.
Working with LDAP, LDAP Queries, and Listeners
To allow the Cisco IronPort appliance to run LDAP queries when you receive or send messages, you
must enable the LDAP query on the appropriate listener.
must enable the LDAP query on the appropriate listener.