Руководство Пользователя для Cisco Cisco Content Security Management Appliance M670
9-5
Cisco IronPort AsyncOS 7.2.0 for Security Management User Guide
OL-21768-01
Chapter 9 LDAP Queries
Note
The maximum number of simultaneous connections includes LDAP
connections used for LDAP queries. However, if you enable LDAP
authentication for the Cisco IronPort Spam Quarantine, the appliance
allows 20 additional connections for the end user quarantine for a total of
30 connections.
connections used for LDAP queries. However, if you enable LDAP
authentication for the Cisco IronPort Spam Quarantine, the appliance
allows 20 additional connections for the end user quarantine for a total of
30 connections.
Step 13
Test the connection to the server by clicking the Test Server(s) button. If you
specified multiple LDAP servers, they are all tested. The results of the test appear
in the Connection Status field. For more information, see
specified multiple LDAP servers, they are all tested. The results of the test appear
in the Connection Status field. For more information, see
Step 14
Create spam quarantine queries by selecting the check box and completing the
fields.
fields.
You can configure the quarantine end-user authentication query to validate
users when they log in to the end-user quarantine. You can configure the alias
consolidation query so that end-users do not receive quarantine notices for
each email alias. To use these queries, select the “Designate as the active
query” check box. For more information, see
users when they log in to the end-user quarantine. You can configure the alias
consolidation query so that end-users do not receive quarantine notices for
each email alias. To use these queries, select the “Designate as the active
query” check box. For more information, see
Step 15
Test the spam quarantine queries by clicking the Test Query button.
Enter the test parameters and click Run Test. The results of the test appear in
the Connection Status field. If you make any changes to the query definition
or attributes, click Update.
the Connection Status field. If you make any changes to the query definition
or attributes, click Update.
Note
If you have configured the LDAP server to allow binds with empty
passwords, the query can pass the test with an empty password field.
passwords, the query can pass the test with an empty password field.
Step 16
Click Submit and then click Commit to commit your changes.
Active Directory server configurations do not allow authentication through TLS
with Windows 2000. This is a known issue with Active Directory. TLS
authentication for Active Directory and Windows 2003 does work.
with Windows 2000. This is a known issue with Active Directory. TLS
authentication for Active Directory and Windows 2003 does work.
Note
Although the number of server configurations is unlimited, you can configure
only one end-user authentication query and one alias consolidation query per
server.
only one end-user authentication query and one alias consolidation query per
server.