Cisco Nexus 7000 Series Command Reference Manual page 508

ldap-server host
username name
Command Default
Server monitoring: Disabled.
TCP port: The global value or 389 if a global value is not configured.
Timeout: The global value or 5 seconds if a global value is not configured.
Idle time: 60 minutes.
Test username: test.
Test password: Cisco
Command Modes
Global configuration
Command History
Release
5.0(2)
Usage Guidelines
To use this command, you must enable LDAP and obtain the IPv4 or IPv6 address or hostname for the remote
LDAP server.
If you plan to enable the SSL protocol, make sure that the LDAP server certificate is manually configured on
the Cisco NX-OS device.
By default, when you configure an LDAP server IP address or hostname on the Cisco NX-OS device, the
LDAP server is added to the default LDAP server group. You can also add the LDAP server to another LDAP
server group.
The timeout interval value specified for an LDAP server overrides the global timeout interval value specified
for all LDAP servers.
This command does not require a license.
Examples
This example shows how to configure the IPv6 address for an LDAP server:
switch# configure terminal
switch(config)# ldap-server host 10.10.2.2 timeout 20
This example shows how to configure the parameters for LDAP server monitoring:
switch# configure terminal
switch(config)# ldap-server host 10.10.1.1 test rootDN root1 username user1 password Ur2Gd2BH
idle-time 3
Cisco Nexus 7000 Series Security Command Reference
482
Specifies a username in the test packets. The
username is alphanumeric, case sensitive, and has a
maximum of 32 characters.
To protect network security, we recommend
Note
that you use a username that is not the same
as an existing username in the LDAP
database.
Modification
This command was introduced.
L Commands