Cisco Cisco Content Security Management Appliance M160 Guia Do Utilizador
9-11
Cisco IronPort AsyncOS 7.2.0 for Security Management User Guide
OL-21768-01
Chapter 9 LDAP Queries
Sample OpenLDAP Alias Consolidation Settings
This section shows sample settings for an OpenLDAP server and the alias
consolidation query. This example uses anonymous authentication for the
OpenLDAP server, a query string for alias consolidation for OpenLDAP servers,
and the
consolidation query. This example uses anonymous authentication for the
OpenLDAP server, a query string for alias consolidation for OpenLDAP servers,
and the
mail
email attribute.
Testing LDAP Queries
Use the Test Query button on the Add/Edit LDAP Server Profile page (or the
ldaptest
command in the CLI) to test your queries. AsyncOS displays details
about each stage of the query connection test. For example, whether the first stage
SMTP authorization succeeded or failed, and whether the BIND match returned a
true or false result.
SMTP authorization succeeded or failed, and whether the BIND match returned a
true or false result.
The
ldaptest
command is available as a batch command, for example:
ldaptest LDAP.isqalias foo@cisco.com
The variable names you enter for queries are case-sensitive and must match your
LDAP implementation to work correctly. For example, entering
LDAP implementation to work correctly. For example, entering
mailLocalAddress
for the email attribute performs a different query than entering
maillocaladdress
.
To test a query, you must enter the test parameters and click Run Test. The results
appear in the Test Connection field. If an end-user authentication query succeeds,
a result of “Success: Action: match positive” is displayed. For alias consolidation
queries, a result of “Success: Action: alias consolidation” is displayed, along with
appear in the Test Connection field. If an end-user authentication query succeeds,
a result of “Success: Action: match positive” is displayed. For alias consolidation
queries, a result of “Success: Action: alias consolidation” is displayed, along with
Table 9-4
Example LDAP Server and Spam Quarantine Alias Consolidation Settings:
OpenLDAP
OpenLDAP
Authentication Method
Anonymous
Server Type
OpenLDAP
Port
389
Base DN
[Blank] (Some older schemas will want to use a specific
Base DN.)
Base DN.)
Connection Protocol
Use SSL
Query String
(mail={a}))
Email Attribute
mail