Руководство Пользователя для Cisco Cisco Content Security Management Appliance M160
11-17
AsyncOS 10.0 for Cisco Content Security Management Appliances User Guide
Chapter 11 Integrating with LDAP
Configuring External Authentication of Administrative Users Using LDAP
Enabling External Authentication of Administrative Users
After you configure the LDAP server profile and queries, you can enable external authentication using
LDAP:
LDAP:
Procedure
Step 1
On the Security Management appliance, choose Management Appliance > System Administration >
Users page.
Users page.
Step 2
Click Enable.
Step 3
Select the Enable External Authentication check box.
Step 4
Select LDAP for the authentication type.
Step 5
Select the LDAP external authentication query that authenticates users.
Step 6
Enter the number of seconds that the appliance waits for a response from the server before timing out.
Step 7
Enter the name of a group from the LDAP directory that you want the appliance to authenticate, and
select the role for the users in the group.
select the role for the users in the group.
Step 8
Optionally, click Add Row to add another directory group. Repeat steps
and
for each directory group
that the appliance authenticates.
Step 9
Submit and commit your changes.
Query string to determine if
a user is a member of a
group
a user is a member of a
group
(&(objectClass=posixGroup)(memberUid={u}))
Query string to determine all
members of a group
members of a group
(&(objectClass=posixGroup)(cn={g}))
Attribute that holds each
member's user name (or a
DN for the user's record)
member's user name (or a
DN for the user's record)
memberUid
Attribute that contains the
group name
group name
cn