HP FlexNetwork 10500 Series Security Configuration Manual page 54

Step
2. Create an LDAP server
and enter LDAP server
view.
Configuring the IP address of the LDAP server
Step
1. Enter system view.
2. Enter LDAP server view.
3. Configure the IP address of
the LDAP server.
Specifying the LDAP version
Specify the LDAP version on the NAS. The device supports LDAPv2 and LDAPv3. The LDAP
version specified on the device must be consistent with the version specified on the LDAP server.
To specify the LDAP version:
Step
1. Enter system view.
2. Enter LDAP server view.
3. Specify the LDAP version.
Setting the LDAP server timeout period
If the device sends a bind or search request to an LDAP server without receiving the server's
response within the server timeout period, the authentication or authorization request times out.
Then, the device tries the backup authentication or authorization method. If no backup method is
configured in the ISP domain, the device considers the authentication or authorization attempt a
failure.
To set the LDAP server timeout period:
Step
1. Enter system view.
2. Enter LDAP server view.
3. Set the LDAP server
timeout period.
Configuring administrator attributes
To configure the administrator DN and password for binding with the LDAP server during LDAP
authentication:
Command
ldap server server-name
Command
system-view
ldap server server-name
{ ip ip-address | ipv6
ipv6-address } [ port
port-number ] [ vpn-instance
vpn-instance-name ]
Command
system-view
ldap server server-name
protocol-version { v2 | v3 }
Command
system-view
ldap server server-name
server-timeout time-interval
40
Remarks
By default, no LDAP server exists.
Remarks
N/A
N/A
By default, an LDAP server has
no IP address.
You can configure either an IPv4
address or an IPv6 address for an
LDAP server. The most recent
configuration takes effect.
Remarks
N/A
N/A
By default, LDAPv3 is used.
A Microsoft LDAP server supports
only LDAPv3.
Remarks
N/A
N/A
By default, the LDAP server timeout
period is 10 seconds.