CHAPTER 1: INTRODUCTION AUTHENTICATION OPERATIONS

LDAP server setup rules

WARNING: The instructions in this user guide have been docu- mented based on standard default settings in LDAP for Microsoft Active Directory Services. The use of other server types, or any changes made to these default settings, must be considered when configuring the R3000 server for authentication.

If LDAP will be used, the following items should be consid- ered:

The administrator in charge of the LDAP server should create a user for the R3000 in order to give that user full read access to the groups and users in the directory.

Since the LDAP directory is structured as a tree, data needs to be retrieved the same way. Additionally, the order of the syntax is reversed compared to how it appears in normal file system folders. The deepest layer is listed first, in a similar manner as a DNS domain name: e.g. “engineering.company.net”. In LDAP, a directory entry would look like this: “cn=engineering,dc=company, dc=net”.

Make sure all network configuration settings are correct (such as DNS, IP, etc.) before configuring LDAP settings.

NOTE: All filtering profiles are stored on the R3000 server.

8E6 TECHNOLOGIES, R3000 ENTERPRISE FILTER AUTHENTICATION USER GUIDE

35

Page 47
Image 47
8e6 Technologies R3000 manual Ldap server setup rules