Cisco Cisco Email Security Appliance C190 Guia Do Utilizador

In the following example, the System Administration > LDAP page is used to edit the LDAP 
configuration named “PublicLDAP” to include an SMTPAUTH query. The query string (

uid={u}

) is 

constructed to match against userPassword attribute.

A name for the query.

You can select whether to authenticate via LDAP bind or by fetching the 
passphrase as an attribute. 

Bind: Attempt to log into the LDAP server using the credentials supplied by 
the client (this is called an LDAP bind). 

Specify the maximum number of concurrent connections to be used by the 
SMTP Auth query. This number should not exceed the number specified in 
the LDAP server attributes above. Note, to avoid large number of session 
time-outs for bind authentication, increase the maximum number of 
concurrent connections here (typically nearly all of the connections can be 
assigned to SMTP Auth). A new connection is used for each bind 
authentication. The remainder of the connections are shared by the other 
LDAP query types.

Passphrase as Attribute: To authenticate by fetching passphrases, specify 
the passphrase in the SMTP Auth passphrase attribute field below.

Specify the LDAP query to use for either kind of authentication.

Active Directory example query: 

(&(samaccountname={u})(objectCategory=person)

(objectClass=user))

If you have selected “Authenticate by fetching the passphrase as an attribute,” 
you can specify the passphrase attribute here.