Cisco Systems OL-12180-01 manual Add/Edit Ldap Attribute Map Map Name Tab, 12-22

Page 22

Chapter 12 Configuring AAA Servers and User Accounts

Configuring an LDAP Attribute Map

Fields

Name—Displays the names of the LDAP attribute maps available for editing.

Attribute Map Name—Displays the mappings of customer attribute names to Cisco attribute names within each attribute map.

Add—Displays the Add LDAP Attribute Map dialog box.

Edit—Displays the Edit LDAP Attribute Map dialog box.

Delete—Deletes the selected LDAP Attribute Map.

Add/Edit LDAP Attribute Map

The Add/Edit LDAP Attribute Map dialog box lets you modify or delete an existing LDAP attribute map, add a new LDAP attribute map, and populate attribute maps with attribute name and value mappings.

Your typical steps to add a new attribute map using the LDAP Attribute Map dialog box would be as follows:

1.Create a new, unpopulated attribute map.

2.Populate the attribute map with name mappings that translate Cisco attribute names to customer, user-defined attribute names.

3.Populate the attribute map with value mappings that apply customer, user-defined attribute values to the customer attribute name and to the matching Cisco attribute name and value.

You would then bind the attribute map to an LDAP server when adding or editing the LDAP server using the Add/Edit AAA Server dialog box.

Fields

Name—Specifies the name of the LDAP attribute map you are adding or editing. If you are adding a new map, you enter the name of the map in this field. If you are editing a map that was selected in the LDAP Attribute Map pane, the name of the selected map displays as read-only text in this field. To change the map, you must return to the LDAP Attribute Map pane and choose the desired map.

Name Map—Displays the fields necessary for mapping customer attribute names to Cisco attribute names.

Value Map—Displays the fields necessary for mapping customer attribute values to customer attribute names and to the matching Cisco attribute name and value.

Add/Edit LDAP Attribute Map > Map Name Tab

The Add/Edit LDAP Attribute Map dialog box lets you modify or delete an existing LDAP attribute map, add a new LDAP attribute map, and populate attribute maps with attribute name and value mappings. See also Add/Edit LDAP Attribute Map.

Some fields vary depending upon whether you have selected the Map Name tab or the Map Value tab. When you click the Map Name tab, the following fields display.

 

ASDM User Guide

12-22

OL-12180-01

Page 21 Page 23
Image 22
Page 21 Page 23
Contents AAA Overview About Authentication12-1 About Accounting About AuthorizationAAA Server and Local Database Support 12-2Radius Server Support Summary of Support12-3 TACACS+ Server Support Authentication MethodsRadius Authorization Functions SDI Server SupportKerberos Server Support Two-step Authentication ProcessNT Server Support SDI Version SupportLocal Database Support Ldap Server SupportSSO Support for Clientless SSL VPN with Http Forms 12-6Fallback Support Configuring the Local DatabaseUser Profiles 12-7User Accounts 12-8Add/Edit User Account Identity 12-9Add/Edit User Account VPN Policy 12-1012-11 AAA Server Groups Identifying AAA Server Groups and Servers12-12 12-13 Add/Edit AAA Server Group 12-14Add/Edit AAA Server Edit AAA Local Server Group12-15 12-16 12-17 12-18 Test AAA Server 12-19Configuring an Authentication Prompt 12-20Configuring an Ldap Attribute Map 12-21Add/Edit Ldap Attribute Map Map Name Tab Add/Edit Ldap Attribute Map12-22 Add/Edit Ldap Attributes Value Map Add/Edit Ldap Attribute Map Map Value Tab12-23 12-24
Top Page Image Contents