Manuals / Cisco Systems / Photography / Security Camera

Cisco Systems OL-15986-01 manual Delete an Existing Ldap Server Entry

Models: OL-15986-01

1 134
Download 134 pages 45.05 Kb
Page 50
Image 50

Chapter 4 Configuring Sponsor Authentication

Configuring LDAP Authentication

User Search Filter—The User Search Filter defines how user entries are named in the LDAP server. For example you can define them to be uid (uid=%USERNAME%) or cn (cn=%USERNAME%). The %USERNAME% should be placed where the username will be inserted in a search.

Group Mapping—There are two main methods that LDAP servers use for assigning users to groups:

1.Storing the group membership in an attribute of the user object. With this method the user object has one or more attributes that list the groups that the user is a member of. If your LDAP server uses this method of storing group membership, you need to enter the name of the attribute which holds the groups the user is a member of. This attribute may be called something like groupMembership, memberOf, or group.

2.Storing the user membership in an attribute of the group object. With this method there is a group object that contains a list of the users who are members of the group. If your LDAP server uses this method, you need to specify the group to check under the LDAP mapping section of a User Group you want to match the user to.

To determine which method to use, Cisco recommends checking the LDAP documentation for your server or using an LDAP browser like the one available at http://www.ldapbrowser.com/ to check the attributes of the server.

Username—The user account that has permissions to search the LDAP server. This is needed so that the Cisco NAC Guest Server can search for the user account and group mapping information.

Password—The password for the user account that has permissions to search the LDAP server.

Confirm Password—Repeat the password to make sure it matches.

Note If you do not want to change the password, leaving both password entries empty preserves the existing password.

Status—Select the status of the LDAP Server. If it is set to Active the Guest Server will use it for authenticating sponsors. If it is set to Disabled it will not be used.

Step 5 Optionally click the Test Connection button to verify the settings are correct for the LDAP server. The Test Connection will bind with the username and password specified to the LDAP server to verify that it can bind successfully.

Step 6 Click the Save Settings button.

Delete an Existing LDAP Server Entry

Step 1 From the administration interface select Authentication > Sponsor > LDAP Servers from the menu.

Step 2 Select the LDAP Server from the list (Figure 4-15).

 

Cisco NAC Guest Server Installation and Configuration Guide

4-14

OL-15986-01

Page 49 Page 51
Page 50
Image 50
Cisco Systems OL-15986-01 manual Delete an Existing Ldap Server Entry
Page 49 Page 51

OL-15986-01 specifications

Cisco Systems OL-15986-01 refers to a specific online training course offered by Cisco, primarily focusing on the implementation and configuration of Cisco routers and switches. This course is part of the larger Cisco Networking Academy program, designed to equip individuals with the necessary skills to enter and succeed in the networking field.

One of the main features of OL-15986-01 is its comprehensive curriculum that covers a wide range of networking concepts including IP addressing, routing protocols, switching technologies, and network management. The coursework emphasizes practical, hands-on experience, allowing students to work with various Cisco technologies, whether through simulations or actual equipment. This aligns with Cisco's commitment to experiential learning, enabling students to apply theoretical knowledge in real-world scenarios.

The course also incorporates advanced technologies and methodologies. For example, it delves into IPv6 addressing and its significance in modern networking, alongside traditional IPv4. Routing protocols such as OSPF, EIGRP, and BGP are discussed in detail, providing learners with insights into how data is routed efficiently across different networks. Additionally, the course covers switching technologies, including VLANs, STP, and EtherChannel, which are essential for configuring robust and efficient local area networks (LANs).

Another noteworthy characteristic of OL-15986-01 is its focus on network security. Students learn about the vulnerabilities that networks face and how to implement security measures to protect network infrastructure. Topics include secure access methods, firewall configurations, and the use of VPNs for secure remote access.

Furthermore, the course emphasizes troubleshooting techniques, empowering students with the skills to identify and resolve network issues effectively. Practical lab sessions and assessments allow learners to demonstrate their comprehension of networking principles and their ability to apply them in various situations.

Ultimately, Cisco Systems OL-15986-01 is designed for individuals seeking to boost their networking knowledge and skillset, paving the way for careers in IT infrastructure management, network engineering, and other technology-related fields. By completing this course, participants gain a solid foundation in networking that can lead to valuable Cisco certifications, enhancing their professional credibility in a competitive job market.