Cisco Cisco Content Security Management Appliance M680 사용자 가이드

For Active Directory servers, the default query string is 

(|(proxyAddresses={a})(proxyAddresses=smtp:{a}))

 and the default email attribute is 

mail

. For 

OpenLDAP servers, the default query string is 

(mail={a})

 and the default email attribute is 

mail

. You 

can define your own query and email attributes, including multiple attributes separated by commas. If 
you enter more than one email attribute, Cisco recommends entering a unique attribute that uses a single 
value, such as 

mail

, as the first email attribute instead of an attribute with multiple values that can 

change, such as 

proxyAddresses

.

To create the query in the CLI, use the 

isqalias

 subcommand of the 

ldapconfig

 command.

This section shows sample settings for an Active Directory server and the alias consolidation query. This 
example uses anonymous authentication for the Active Directory server, a query string for alias 
consolidation for Active Directory servers, and the 

mail

 email attribute.

This section shows sample settings for an OpenLDAP server and the alias consolidation query. This 
example uses anonymous authentication for the OpenLDAP server, a query string for alias consolidation 
for OpenLDAP servers, and the 

mail

 email attribute.

Active Directory

3268

[Blank]

Use SSL

(

|(mail={a})(mail=smtp:{a})

)

mail

OpenLDAP

389

[Blank] (Some older schemas will want to use a specific 
Base DN.)

Use SSL

(mail={a}))

mail