Table of Contents
Advertisement
Step C. Configure LDAP Authentication on the PX3TS
Field/setting
IP address / hostname
Copy settings from existing
LDAP server
Type of LDAP server
Security
Port (None/StartTLS)
Port (TLS),
CA certificate
Anonymous bind
Bind DN,
Bind password,
Confirm bind password
Base DN for search
You must enable and set up LDAP authentication properly on the PX3TS to use
external authentication.
In the illustration, we assume:
•
The DNS server settings have been configured properly. See
Network Settings
(on page 311) and
•
The AD server's domain name is techadssl.com, and its IP address is
192.168.56.3.
•
The AD protocol is NOT encrypted over TLS.
•
The AD server uses the default TCP port 389.
•
Anonymous bind is used.
To configure LDAP authentication:
1.
Choose Device Settings > Security > Authentication.
2.
In the LDAP Servers section, click New to add an LDAP/LDAPS server.
3.
Provide the PX3TS with the information about the AD server.
Do this...
Type the domain name techadssl.com or IP address
192.168.56.3.
▪ Without the encryption enabled, you can type either the domain name
or IP address in this field, but you must type the fully qualified domain
name if the encryption is enabled.
Leave the checkbox deselected unless the new LDAP server's settings are
similar to any existing LDAP settings.
Select "Microsoft Active Directory."
Select "None" since the TLS encryption is not applied in this example.
Ensure the field is set to 389.
Skip the two fields since the TLS encryption is not enabled.
Select this checkbox because anonymous bind is used.
Skip the three fields because of anonymous bind.
Type dc=techadssl,dc=com as the starting point where your search
begins on the AD server.
Appendix G: LDAP Configuration Illustration
Wired
Role of a DNS Server
(on page 845).
779
Advertisement
Table of Contents
Troubleshooting
