Appendix B
Configuring an External Server for Authorization and Authentication
Create an LDAP attribute map on the adaptive security appliance:
Step 2
The following example creates the map Banner, and maps the AD/LDAP attribute
physicalDeliveryOfficeName to the Cisco attribute Banner1:
hostname(config)# ldap attribute-map Banner
hostname(config-ldap-attribute-map)# map-name physicalDeliveryOfficeName Banner1
Associate the LDAP attribute map to the AAA server.
Step 3
The following example enters the aaa server host configuration more for the host 3.3.3.4, in the AAA
server group MS_LDAP, and associates the attribute map Banner that you created in step 2:
hostname(config)# aaa-server MS_LDAP host 3.3.3.4
hostname(config-aaa-server-host)# ldap-attribute-map Banner
Test the banner enforcement.
Step 4
This example shows a clientless SSL connection and the banner enforced through the attribute map after
the user authenticates
Figure B-4
OL-20339-01
(Figure
B-4).
Banner Displayed
Configuring an External LDAP Server
Cisco ASA 5500 Series Configuration Guide using ASDM
B-19