Cisco Cisco Email Security Appliance C170 Guia Do Utilizador
3-4
Cisco IronPort AsyncOS 7.6 for Email Advanced Configuration Guide
OL-25137-01
Chapter 3 LDAP Queries
Configuring AsyncOS to work with LDAP
When you configure your Cisco IronPort appliance to work with an LDAP directory, you must complete
the following steps to configure your AsyncOS appliance for acceptance, routing, aliasing, and
masquerading:
the following steps to configure your AsyncOS appliance for acceptance, routing, aliasing, and
masquerading:
Step 1
Configure LDAP server profiles. The server profile contains information to enable AsyncOS to connect
to the LDAP server (or servers), such as:
to the LDAP server (or servers), such as:
–
the name of the server (s) and port to send queries,
–
the base DN, and
–
the authentication requirements for binding to the server
For more information about configuring a server profile, see
When you configure the LDAP server profile, you can configure AsyncOS to connect to one or
multiple LDAP servers.
multiple LDAP servers.
For information about configuring AsyncOS to connect to multiple servers, see
Step 2
Configure the LDAP query. You configure the LDAP queries on the LDAP server profile. The query
you configure should be tailored to your particular LDAP implementation and schema.
you configure should be tailored to your particular LDAP implementation and schema.
For information on the types of LDAP queries you can create, see
For information on writing queries, see
Step 3
Enable the LDAP server profile on a public listener or on a private listener. You must enable the
LDAP server profile on a listener to instruct the listener to run the LDAP query when accepting, routing,
or sending a message.
LDAP server profile on a listener to instruct the listener to run the LDAP query when accepting, routing,
or sending a message.
For more information, see
.
Note
When you configure a group query, you need to take additional steps to configure AsyncOS to work with
the LDAP server. For information on configuring a group query, see
the LDAP server. For information on configuring a group query, see
.
When you configure an end-user authentication or spam notification consolidation query, you must
enable LDAP end-user access to the Cisco IronPort Spam Quarantine. For more information on the Cisco
IronPort Spam Quarantine, see “Configuring the Cisco IronPort Spam Quarantines Feature” in the Cisco
IronPort AsyncOS for Email Daily Management Guide.
enable LDAP end-user access to the Cisco IronPort Spam Quarantine. For more information on the Cisco
IronPort Spam Quarantine, see “Configuring the Cisco IronPort Spam Quarantines Feature” in the Cisco
IronPort AsyncOS for Email Daily Management Guide.
Creating LDAP Server Profiles
When you configure AsyncOS to use LDAP directories, you create an LDAP server profile to store the
information about the LDAP server.
information about the LDAP server.
To create an LDAP server profile,
Step 1
On the System Administration > LDAP page, click Add LDAP Server Profile The Add LDAP Server
Profile page is displayed:
Profile page is displayed: