Pelco SM5200 manual Disabling Password Expiration, Configuring Ldap Authentication

Page 21

DISABLING PASSWORD EXPIRATION

You must disable password expiration before enabling LDAP to prevent user management conflicts between the system manager and the LDAP server.

1.Log on to the WS5200 application as an administrator.

2.Click the System Configuration tab if it is not already selected.

3.Scroll down to Password Settings, and click Off.

4.Click Apply.

You can now configure LDAP authentication.

CONFIGURING LDAP AUTHENTICATION

1.Navigate to the LDAP page.

2.Select Enable LDAP

3.Type the hostname or IP address of the LDAP server in the Server name field.

4.Edit the Server port field if the LDAP server is not on the default port (389).

5.Configure Search Settings for your LDAP server.

6.Click Save.

CONFIGURING SEARCH SETTINGS FOR SIMPLE LDAP AUTHENTICATION

Configuring search settings for simple LDAP authentication only requires the Base DN and the Search Attributes fields. Leave other fields blank. When inputting multiple entries in a field, separate entries with commas.

1.Type a distinguished name (DN) that will be combined with a user attribute key and value pair in the Base DN field.

2.Type an attribute key name that is combined with the User Name attribute in the Search Attributes field.

CONFIGURING SEARCH SETTINGS FOR TWO STAGE LDAP AUTHENTICATION

Configuring search settings for two-stage LDAP authentication requires all fields. When typing multiple entries in a field, separate entries with commas.

1.Type the distinguished name (DN) that acts as the basis for user searches by User Name in the Base DN field.

2.Type a fully qualified DN associated with a service account that will bind with the LDAP server and perform user searches in the Service DN field.

3.Type the password that allows the service DN to bind with the LDAP server in the Service DN Password field.

4.Type the two attribute keys that are combined with the User Name attribute; separate the two keys with a comma.

The first key identifies the attribute containing the user name.

The second key identifies the fully qualified DN used for the second bind and credential validation.

TESTING LDAP SEARCH SETTINGS

1.Navigate to the LDAP page.

2.Click Test.

3.Input the User Name and Password for a valid user in the LDAP database.

4.Click Test Connection.

If the connection passes, your LDAP configuration is valid. If the connection fails, verify your LDAP Server Settings and Search Settings and try again.

C5619M (8/12)

21

Page 20 Page 22
Image 21
Page 20 Page 22
Contents Endura SM5200 System Manager Contents List of Illustrations About the Web Configuration Application Endura Application CompatibilityNavigating the WEB Interface Restoring Factory Defaults Saving Configuration SettingsSystem Tools Restarting the SystemChanging Your Password Expiring PasswordsLogging On to the SM5200 System Status Temperature StatusVideo Storage Power StatusFAN Status Disk StatusConfiguring the Primary Network Interface IP SettingsConfiguring the Secondary Network Interface System Manager Failover Cluster Configuring the Failover Cluster IP AddressDate and Time Configuration System SettingsAbout Overriding Default DST Settings Using the System Manager AS AN Independent Time ServerOverriding Default DST Settings Synchronizing with AN External Time ServerConfiguring the Pelco WEB Viewer Pelco WEB Viewer ConfigurationUser Permissions for Accessing the Pelco WEB Viewer Enabling User Access to the Pelco WEB ViewerChanging the Https Port WEB Server Port ConfigurationSnmp Configuration Configuring Snmp V2CConfiguring Snmp Dhcp Dhcp SetupConfiguring Dhcp Scopes Setting MAC Address ReservationsManaging Leases Deleting MAC Address Reservations Ldap Settings Tab Ldap SetupConfiguring Ldap Authentication Disabling Password ExpirationTesting Ldap Search Settings Configuring Search Settings for Simple Ldap AuthenticationUpdating the SM5200 Product Warranty and Return Information
Top Page Image Contents