Table of Contents
Advertisement
Field
Enable LDAP/AD authentication
Server address
LDAP users folder
Admin group name
Power group name
It is possible to manage the login via LDAP or Active Directory. The user must be present on the
server and must belong to a specified group. If the group is the "Admin group" then the user will be
granted the "admin" privileges. If the group is the "Power group" then the user will be granted the
"power" privileges (i.e., without the privilege of performing shutdown on the device).
Examples of LDAP server addresses:
ldap://myserver:389/
ldap://10.1.10.99:389/
Over secure socket:
ldaps://myserver:636/
ldaps://10.1.10.99:636/
If the user "john" is present on the LDAP server and it belongs to the configured groups, it will be
possible to login with username "john" and its LDAP password.
Specific example and how it works:
Considering these parameters:
Server address
ldap://10.1.10.150
LDAP Users folder
ou=ORGANIZATION,dc=example,dc=com
Admin group name
cn=sys.ups.sysadmins,ou=UPS,ou=SYS,ou=STRUCTURE_MANAGED,ou=ORGANIZATIO
N,dc=example,dc=com
Power group name
cn=sys.ups.powerusers,ou=UPS,ou=SYS,ou=STRUCTURE_MANAGED,ou=ORGANIZATI
ON,dc=example,dc=com
The given LDAP Server allows to access following credentials:
Username: orgadmin / Password: orgadmin (member of "Admin" grop)
Username: orgpower / Password: orgpower (member of "Power" group)
Description
To enable login via LDAP or AD
The address of the server, can be either ldap:// or ldaps://
The folder of users allowed to log in
The group with "Admin" privileges
The group with "Power" privileges
- 76 -
Hide quick links:
Advertisement
Table of Contents
