• A n account for admin.
• If LDAP a uthentication is specified for the consol e server, accounts for all u sersw ho need
to log in to the con sole serverto ad minister connected devices.
• If LDAP a uthentication is specified for serial ports, accoun ts for users who need
administrative access to the con nected devices.
To configureLD AP authentication:
1. Select Security - Auth entication - LDAP i n Expert mode. The LDA P formdi splays with
LDAP Server and LDAP Base fiel ds filled in from with the cu rrent values in the
/etc/ldap.conf fil e.
2. Supply the IP address of the LDAP server in the LDAP Server field.
3. If the LDAP authenticati on serveru sesa d ifferentd istinguished name for the search base
than the one di splayed in the LDAP Base field, chang e the definition.
The default di stinguished name i s dc, as in dc=v alue,dc=value. If the distingui shed
name on the LDAP server is o, then replace dc in th eb asefiel d with o, as in
o=value,o=value.
4. Replace the default b ase name with the name of your LDAP domain.
For example, for the LDAP domain name avocent.co m,the co rrecten try is:
dc=avocent,dc=com.
5. Enable Secure LDAP, if requi red.
6. Enter optional information in LDAP User N ame, LDAP Password and LDAP Logi n
Attributefiel ds.
7. Click apply changes. The changes are sto red in /etc/ldap .conf on the con sole server.
Group Authorizationon LDA P
Group information retrieval from an LDA P authentication server adds ano ther layer of security
by adding a netwo rk-based authorization. It retrieves the grou p information from the
authenticati on server and performs an auth orization through the co nsole server.
To configurea K erberosauthenticationserver:
Performth e following p rocedure to configure a Kerberos authe ntication server whe n the
console server or any of its po rts is configured to use Kerberos auth entication meth od or any of
its variations (Kerberos, Kerberos/Local or K erberosDownLocal).
Before starting this procedure, find ou t the following information from the Ke rberosserver
administrator:
96 Cyclades®ACS50 00 Installation/ Administration/User Gu ide