Cisco Cisco Email Security Appliance C170 Referências técnicas
3-119
CLI Reference Guide for AsyncOS 9.6 for Cisco Email Security Appliances
Chapter 3 The Commands: Reference Examples
LDAP
ldapconfig
Description
Configure LDAP servers
Usage
Commit: This command requires a ‘commit’.
Cluster Management: This command can be used in all three machine modes (cluster, group, machine).
Batch Command: This command does not support a batch format.
Example - Creating a New LDAP Server Profile
In the following example, the
ldapconfig
command is used to define an LDAP server for the appliance
to bind to, and queries for recipient acceptance (
ldapaccept
subcommand), routing (
ldaprouting
subcommand), masquerading (
masquerade
subcommand), end-user authentication for the Spam
Quarantine (
isqauth
subcommand), and alias consolidation for spam notifications (
isqalias
subcommand) are configured.
First, the nickname of “PublicLDAP” is given for the
mldapserver.example.com
LDAP server. Queries
are directed to port 3268 (the default). The search base of
example.com
is defined (
dc=example,dc=com
),
and queries for recipient acceptance, mail re-routing, and masquerading are defined. The queries in this
example are similar to an OpenLDAP directory configuration which uses the inetLocalMailRecipient
auxiliary object class defined in the expired Internet Draft draft-lachman-laser-ldap-mail-routing-xx.txt,
also sometimes known as “the Laser spec.” (A version of this draft is included with the OpenLDAP
source distribution.) Note that in this example, the alternate mailhost to use for queried recipients in the
mail re-routing query is
example are similar to an OpenLDAP directory configuration which uses the inetLocalMailRecipient
auxiliary object class defined in the expired Internet Draft draft-lachman-laser-ldap-mail-routing-xx.txt,
also sometimes known as “the Laser spec.” (A version of this draft is included with the OpenLDAP
source distribution.) Note that in this example, the alternate mailhost to use for queried recipients in the
mail re-routing query is
mailForwardingAddress
. Remember that query names are case-sensitive and
must match exactly in order to return the proper results.
mail3.example.com> ldapconfig
No LDAP server configurations.
Choose the operation you want to perform:
- NEW - Create a new server configuration.
- SETUP - Configure LDAP options.
[]> new
Please create a name for this server configuration (Ex: "PublicLDAP"):
[]> PublicLDAP
Please enter the hostname:
[]> myldapserver.example.com
Use SSL to connect to the LDAP server? [N]> n
Select the authentication method to use for this server configuration:
1. Anonymous
2. Password based
[1]> 2
Please enter the bind username:
[cn=Anonymous]>