Chapter 9
LDAP Server Configuration
Introduction
The CN8000 allows log in authentication and authorization through external programs. This chapter describes how to configure Active Directory and OpenLDAP for CN8000 authentication and authorization.
To allow authentication and authorization for the CN8000 via LDAP or LDAPS, the Active Directory’s LDAP Schema must be extended so that an extended attribute name for the CN8000 – permission – is added as an optional attribute to the person class.
Note: Authentication refers to determining the authenticity of the person logging in; authorization refers to assigning permission to use the device’s various functions.
In order to configure the LDAP server, you will have to complete the following procedures: 1) Install the Windows Server Support Tools; 2) Install the Active Directory Schema
The following section provides an example of configuring LDAP under Windows 2003 Server.
Install the Windows 2003 Support Tools
To install the Windows 2003 Support Tools, do the following:
1.On your Windows Server CD, open the Support → Tools folder.
2.In the right panel of the dialog box that comes up, double click SupTools.msi.
3.Follow along with the Installation Wizard to complete the procedure.
137