Руководство Пользователя для Cisco Cisco Content Security Management Appliance M160

You can configure redundant LDAP servers on the Management Appliance > System Administration > 
LDAP page or by using the CLI 

ldapconfig

 command.

Use the Test Server(s) button on the Add (or Edit) LDAP Server Profile page (or the 

test

 subcommand 

in the CLI) to test the connection to an LDAP server. If you use multiple LDAP servers, AsyncOS tests 
each server and displays individual results for each server. AsyncOS will also test the query on each 
LDAP server and display the individual results. 

To ensure an LDAP server is available to that resolve queries, you can configure the LDAP profile for 
failover.

The Cisco Content Security appliance attempts to connect to the first server in the list of LDAP servers 
for a specified period of time. If the appliance cannot connect to the first LDAP server in the list, the 
appliance attempts to connect to the next LDAP server in the list. To ensure that the Cisco Content 
Security appliance connects to the primary LDAP server by default, enter it as the first server in the list 
of LDAP servers. 

If the Cisco Content Security appliance connects to a second or subsequent LDAP server, it remains 
connected to that server for a specified period of time. At the end of this period, the appliance attempts 
to reconnect to the first server in the list. 

On the Security Management appliance, choose Management Appliance > System Administration > 
LDAP.

Select the LDAP server profile you want to edit.

In the following example, the LDAP server name is example.com.