Table of Contents
Advertisement
Generic LDAP
ou=
ou=
User Guide for Cisco Secure ACS for Windows Server
13-40
For example, if the delimiter character is "@" and the username is
"jwiedman@domain", then Cisco Secure ACS submits "jwiedman" to an
LDAP server.
The X box cannot contain the following special characters:
Note
# ? " * > <
Cisco Secure ACS does not allow these characters in usernames;
therefore, if any of these characters are in the X box, stripping fails.
Common LDAP Configuration—This table contains options that apply to
•
all LDAP authentication performed using this configuration. Cisco Secure
ACS uses the settings in this section regardless of whether the authentication
is handled by the primary or secondary LDAP server. This table contains the
following options:
User Directory Subtree—The distinguished name (DN) for the subtree
–
that contains all users. For example:
organizational unit
[,ou=
If the tree containing users is the base DN, type:
o=corporation.com
or
dc=corporation,dc=com
as applicable to your LDAP configuration. For more information, refer to
your LDAP database documentation.
Group Directory Subtree—The DN for the subtree that contains all
–
groups. For example:
organizational unit
[,ou=
If the tree containing groups is the base DN, type:
o=corporation.com
or
dc=corporation,dc=com
as applicable to your LDAP configuration. For more information, refer to
your LDAP database documentation.
next organizational unit
next organizational unit
Chapter 13
User Databases
]o=corporation.com
]o=corporation.com
78-16592-01
Advertisement
Table of Contents
Troubleshooting
