1. Manuals
  2. Brands
  3. Avocent Manuals
  4. Network Hardware
  5. MERGEPOINT SP MANAGER
  6. Installer/user manual

Defining Groups On An Ldap Server Running Openldap - Avocent MERGEPOINT SP MANAGER Installer/User Manual

Sp manager
Hide thumbs
Table of Contents

Advertisement

11. In the Edit Attribute field, enter the group name in the format group_name=<Group1>;. If
the username selected is an administrative user, enter admin as the group_name.
12. Click OK and close or save the windows.

Defining groups on an LDAP server running OpenLDAP

Perform the following procedures for configuring support for group authorizations when a
server running OpenLDAP is used for LDAP authentication.
Any groups configured in the memberof attribute are used; if no groups are defined in the
member of attribute, then any groups configured in the info attribute are used. The groups
defined on the LDAP server must be configured on the MergePoint SP manager with the
desired device access authorizations.
To configure groups using the info attribute on an LDAP authentication server:
1. On the server, add the info attribute into the objectclass posixAccount in the
/etc/ldap/schema/nis.schema file:
objectclass (1.3.6.1.1.2.0 NAME 'posixAccount' SUP top AUXILIARY DESC
'Abstraction of an account with POSIX attributes' MUST ( cn $ uid $
uidNumber $ gidNumber $ homeDirectory ) MAY ( userPassword $ loginShell
$ gecos $ description $ info) )
2. Make sure the info attribute exists in the /etc/ldap/schema/cosine.schema file.
attributetype (0.9.2342.19200300.100.1.4 NAME 'info'
DESC 'RFC1274: general information'
EQUALITY caseIgnoreMatch
SUBSTR caseIgnoreSubstringsMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{2048} )
Make sure both schema files are listed in slapd.conf:
NOTE: The slapd.conf file is normally located in: [Redhat] /etc/openldap or [bsd] /usr/local/etc/openldap.
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/cosine.schema
3. Restart the LDAP service to activate changes.
4. Use the ldapadd(1) command to add new users or the ldapmodify(1) command to assign a
user to a group in one of the two following ways:
a.
Enter the user information including the group name on the command line, using the
ldapadd command to add new users or the ldapmodify command to modify existing
users.
Chapter 6: Administration Tasks Not Performed in the Web Interface
115
Show Quick Links

Hide quick links:

Advertisement

Table of Contents
loading

Related Manuals for Avocent MERGEPOINT SP MANAGER

Related Content for Avocent MERGEPOINT SP MANAGER

This manual is also suitable for:

Mergepoint sp5x00 seriesMergepoint sp5x24 seriesMergepoint sp5340

Table of Contents