8-61
UserGuide for Cisco Digital Media Manager5.4.x
OL-15762-05
Chapter8 Authentication and Fe derated Identity
Reference
Network Policy FAQs
Q.
When I use LDAP authentication with CiscoDMS, which ports must remain open in my network?
A.
Your DMM appliance accepts user authentication requests securely through port4 43. DMM then
passes these requests securely to your Active Directory server through port 389. Also, SSL uses
port 636.
User Exclusion FAQs
Q.
Can I block Cisco DMS access to one particular Active Directory user account, when it is among the matched
results for an otherwise useful LDAP filter?
A.
Yes. Extend your query to include a logical NOT (
!
) operator for an attribute whose value is unique
to this user. This example uses the LDAP
samAccountName
” attribute name, which DMM uses by
default to populate the corresponding login name for DMM. However, if your ActiveDirectory
server uses any other attribute name than “
samAccountName
” for this purpose, you must update the
example syntax accordingly when you extend your query.
(&(currentFilter)(samAccountName!=
username-to-be-excluded
))
Tip Information on the Manage Attributes property sheet in DMS-Admin confirms whether your Active Dir ectory
server uses the
samAccountName
attribute name.