© Copyright Lenovo 2017
Table 155.
LDAP Server Configuration Options (continued)
Command Syntax and Usage
no ldapserver primaryhost
Deletes the primary LDAP server.
Command mode: Global configuration
ldapserver ipv6 primaryhost <IPv6 address> [dataport|
|mgtport]
Configures the primary LDAP server with an IPv6 address.
Note: This option is available only in LDAP legacy mode.
Command mode: Global configuration
no ldapserver ipv6 primaryhost
Deletes the primary LDAP server.
Note: This option is available only in LDAP legacy mode.
Command mode: Global configuration
ldapserver retransmit <1‐3>
Sets the number of failed authentication requests before switching to a
different LDAP server.
The default is 3 requests.
Command mode: Global configuration
ldapserver security clear
Configures LDAP to not encrypt LDAP credentials (DN and password) when
sending a bind request to the LDAP server.
The default security mode is clear (clear text).
Note: This option is available only in LDAP enhanced mode.
Command mode: Global configuration
ldapserver security ldaps
Configures LDAP to encrypt LDAP credentials (DN and password) using
Secure LDAP (LDAPS) when sending a bind request to the LDAP server. This
requires the LDAP client to present a Certificate Authority (CA) root
certificate. The CA root certificate can be downloaded from the LDAP server.
For more details, see page
The LDAP client and LDAP server must initiate a separate Transport Layer
Security (TLS) session before any LDAP messages are exchanged. This is
usually achieved on UDP port 636.
Note: This option is available only in LDAP enhanced mode.
Command mode: Global configuration
338.
Chapter 4: Configuration Commands
367