202 Command Reference
Table 62
LDAP Group Search Menu Options (/cfg/vpn/aaa/auth/ldap/groupsearc) (cont'd.)
Command Syntax and Usage
memberattr
ena
dis
/cfg/vpn <id> /aaa/auth <id> /ldap/activedire Active
Directory Settings Configuration
[Active Directory Settings Menu]
enaexpired - Enable expired account/password check
expiredgro -Set expired account group exppasgrou - Set expired
passwordgroup pwdexppopu - Set Enable password expiration
pop-upwarning recursivem - Enable recursive group membership
The Active Directory Settings menu lets you manage different Active
Directory settings, for example expired account/password checks.
Table 63
Active Directory Settings Menu Options (/cfg/vpn/aaa/auth/ldap/activedire)
Command Syntax and Usage
enaexpired true|false
Copyright © 2007 Nortel Networks
.
The group should name should be defined in the VPN with one or
more access rules (see the /cfg/vpn #/aaa/group # command
on
"/cfg/vpn <id> /aaa/group <id> Group Configuration" (page
237)).
Defines the LDAP attribute that contains the group member's name.
The default value is uniqueMember.
Enables the group search feature.
Disabled by default.
Disables the group search feature.
Disabled by default.
Nortel VPN Gateway
Command Reference
NN46120-103 01.01 Standard
10 September 2007