Cisco Cisco Email Security Appliance C160 Mode D'Emploi
3-7
Cisco IronPort AsyncOS 7.6 for Email Advanced Configuration Guide
OL-25137-01
Chapter 3 LDAP Queries
Configuring Global Settings
The LDAP global settings define how the appliance handles all LDAP traffic. To configure global
settings for LDAP:
settings for LDAP:
Step 1
On the System Administration > LDAP page, click Edit Settings.
The Edit LDAP Settings page is displayed:
Figure 3-3
Edit LDAP Settings Page
Step 2
Select the IP interface to use for LDAP traffic. The appliance automatically chooses an interface by
default.
default.
Step 3
Select the TLS certificate to use for the LDAP interface (TLS certificates added via the Network >
Certificates page or the
Certificates page or the
certconfig
command in the CLI are available in the list, see
Step 4
Submit and commit your changes.
Example of Creating an LDAP Server Profile
In the following example, the System Administration > LDAP page is used to define an LDAP server for
the appliance to bind to, and queries for recipient acceptance, routing, and masquerading are configured.
the appliance to bind to, and queries for recipient acceptance, routing, and masquerading are configured.
Note
There is a 60 second connection attempt time-out for LDAP connections (which covers the DNS lookup,
the connection itself, and, if applicable, the authentication bind for the appliance itself). After the first
failure, AsyncOS immediately starts trying other hosts in the same server (if you specified more than
one in the comma separated list). If you only have one host in the server, AsyncOS continues attempting
to connect to it.
the connection itself, and, if applicable, the authentication bind for the appliance itself). After the first
failure, AsyncOS immediately starts trying other hosts in the same server (if you specified more than
one in the comma separated list). If you only have one host in the server, AsyncOS continues attempting
to connect to it.