Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01 Manual page 145

Copyright © 2010, Juniper Networks, Inc.
Table 41: LDAP Server Instance Configuration Details (continued)
Option
Search Timeout (seconds)
LDAP Settings > Authentication tab
Authentication required to
search LDAP
Admin DN
Password
Strip domain from
Windows user names
Enable
Challenge-Response open
protocols
LDAP Settings > Finding User Entries tab
Base DN
Chapter 13: Configuring Authentication Servers
Function
Specifies how long you
want the Infranet
Controller to wait for
search results from a
connected LDAP server.
Specifies if the Infranet
Controller needs to
authenticate against the
LDAP directory to perform
a search or to change
passwords using the
password management
feature.
Specifies the administrator
DN.
Specifies the password for
the admin DN name.
Removes the domain from
a domain\username pair.
This feature allows the
Infranet Controller to pass
the username without the
domain to the LDAP server.
Specifies
challenge-response
protocol for authentication,
if you are configuring this
LDAP server instance for
noninteractive endpoints.
Searches for user entries.
Your Action
Set the time required for the search to
time out.
Select LDAP Settings
>Authentication>Authentication
required to search LDAP to enable
this option.
Enter the admin DN name.
Enter the password.
Select the check box.
Select the check box.
NOTE: If the LDAP server is configured
to limit the rate of password-guessing
attacks, and you select the Enable
Challenge-Response open protocols
check box, the LDAP server's
rate-limiting feature is bypassed.
Enter a base DN name. For example,
enter DC=eng, DC=Juniper, DC=com.
127