Aaa Group Server Ldap Commands - ZyXEL Communications UAG Series Reference Manual
Unified access gateway
Hide thumbs
Also See for UAG Series:
- User manual (323 pages) ,
- Cli reference manual (282 pages) ,
- Quick start manual (2 pages)
Table of Contents
Advertisement
Chapter 49 AAA Server
Table 158 aaa group server ad Commands (continued)
COMMAND
[no] server alternative-cn-
identifier uid
[no] server basedn basedn
[no] server binddn binddn
[no] server cn-identifier uid
[no] server description
description
[no] server group-attribute
group-attribute
[no] server host ad_server
[no] server password password
[no] server port port_no
[no] server search-time-limit
time
[no] server ssl
49.2.6 aaa group server ldap Commands
The following table lists the
LDAP servers.
Table 159 aaa group server ldap Commands
COMMAND
clear aaa group server ldap [group-
name]
show aaa group server ldap group-name
[no] aaa group server ldap group-name
aaa group server ldap rename group-
name group-name
aaa group server ldap group-name
246
DESCRIPTION
Sets the second type of identifier that the users can use to log in if any. For
example "name" or "e-mail address". The
Sets the base DN to point to the AD directory on the AD server group. The
no command clears this setting.
Sets the user name the UAG uses to log into the AD server group. The no
command clears this setting.
Sets the user name the UAG uses to log into the AD server group. The no
command clears this setting.
Sets the descriptive information for the AD server group. You can use up to
60 printable ASCII characters. The no command clears the setting.
Sets the name of the attribute that the UAG is to check to determine to
which group a user belongs. The value for this attribute is called a group
identifier; it determines to which group a user belongs. You can add ext-
group-user user objects to identify groups based on these group identifier
values.
For example you could have an attribute named "memberOf" with values
like "sales", "RD", and "management". Then you could also create an ext-
group-user user object for each group. One with "sales" as the group
identifier, another for "RD" and a third for "management". The
clears the setting.
Enter the IP address (in dotted decimal notation) or the domain name of an
AD server to add to this group. The
Sets the bind password (up to 15 alphanumerical characters). The
command clears this setting.
Sets the AD port number. Enter a number between 1 and 65535. The default
is 389. The no command clears this setting.
Sets the search timeout period (in seconds). Enter a number between 1 and
300. The no command clears this setting and set this to the default setting
of 5 seconds.
Enables the UAG to establish a secure connection to the AD server. The no
command disables this feature.
aaa group server ldap
DESCRIPTION
Deletes all LDAP server groups or the specified LDAP server group.
Note: You can NOT delete a server group that is currently in use.
Displays the specified LDAP server group settings.
Sets a descriptive name for an LDAP server group. Use this command to
enter the sub-command mode.
The no command deletes the specified server group.
Changes the descriptive name for an LDAP server group.
Enter the sub-command mode.
command clears this setting.
no
command clears this setting.
no
commands you use to configure a group of
UAG CLI Reference Guide
command
no
no
Advertisement
Table of Contents
