Table of Contents
Advertisement
The following table describes the labels in this screen.
Table 153 AAA Server: Add - AD Server/LDAP Server
LABEL
Profile Name
Description
Server Address
Backup Server
Address
Port
Base DN
Use SSL
Search time limit
Bind DN
Password
Login Name
Attribute
Alternative Login
Name Attribute
Group
Membership
Attribute
Enable
User Name
User Password
Realm
OK
Cancel
ENC User's Guide
DESCRIPTION
Enter a descriptive name (up to 30 alphanumerical characters) for identification purposes.
Enter the description of each server, if any. You can use up to 60 printable ASCII
characters.
Enter the address of the AD server.
If the AD has a backup server, enter its address here.
Specify the port number on the AD to which the NXC5200 sends authentication requests.
Enter a number between 1 and 65535.
This port number should be the same on all AD or LDAP server(s) in this group.
Specify the directory (up to 127 alphanumerical characters). For example,
c=US
.
Select Use SSL to establish a secure connection to the AD or LDAP server(s).
Specify the timeout period (between 1 and 300 seconds) before the NXC5200 disconnects
from the AD server. In this case, user authentication fails.
Search timeout occurs when either the user information is not in the AD or the AD is down.
Specify the bind DN for logging into the AD server. Enter up to 127 alphanumerical
characters.
cn=zyAdmin
For example,
If required, enter the password (up to 15 alphanumerical characters) for the NXC5200 to
bind (or log in) to the AD server.
Enter the type of identifier the users are to use to log in. For example "name" or "e-mail
address".
If there is a second type of identifier that the users can use to log in, enter it here. For
example "name" or "e-mail address".
Enter the name of the attribute that the NXC5200 is to check to determine to which group
a user belongs. The value for this attribute is called a group identifier; it determines to
which group a user belongs. You can add ext-group-user user objects to identify groups
based on these group identifier values.
For example you could have an attribute named "memberOf" with values like "sales", "RD",
and "management". Then you could also create a ext-group-user user object for each
group. One with "sales" as the group identifier, another for "RD" and a third for
"management".
Select this to enable domain authentication for MSChap.
Note: This is only for LDAP.
Enter the user name for the user who has rights to add a machine to the domain.
Note: This is only for LDAP.
Enter the password for the associated user name.
Note: This is only for LDAP.
Enter the realm IP address.
Note: This is only for LDAP.
Click OK to save the changes.
Click Cancel to discard the changes.
zyAdmin
specifies
as the user name.
Chapter 8 Application
o=ZyXEL,
289
Advertisement
Table of Contents
Related Manuals for ZyXEL Communications ENC
Related Products for ZyXEL Communications ENC
- ZyXEL Communications ENTERPRISE NETWORK CENTER
- ZyXEL Communications ES-2048
- ZyXEL Communications DIMENSION ES-1024A
- ZyXEL Communications ES-1016B
- ZyXEL Communications ES-1024B
- ZyXEL Communications Dimension ES-3024
- ZyXEL Communications Dimension ES-4124
- ZyXEL Communications ZyXEL Dimension ES-2108PWR