NETGEAR UTM5EW-100NAS, STM150EW-100NAS manual 346

Setting

Description

Search Base

LDAP and Active

The DN at which to start the search, specified as a sequence of

Directory

relative distinguished names (RDNs), connected with commas

(continued)

and without any blank spaces. For most users, the search base is

a variation of the domain name. For example, if your domain is

yourcompany.com, your search base DN might be as follows: dc=

yourcompany,dc=com.

UID Attribute

LDAP only

The attribute in the LDAP directory that contains the user’s

identifier (UID).

For an Active Directory, enter sAMAccountName.

For an OpenLDAP directory, enter uid.

Member Groups

This field is optional. The attribute that is used to identify the

Attribute

groups that an entry belongs to.

For an Active Directory, enter memberOf.

For OpenLDAP, you can enter a customized attribute to identify

the groups of an entry.

Group Members

This field is optional. The attribute that is used to identify the

Attribute

members of a group.

For an Active Directory, enter member.

For OpenLDAP, you can enter a customized attribute to identify

the members of a group.

Additional Filter

LDAP and Active

This field is optional. A filter that is used when the UTM is

Directory

searching the LDAP server for matching entries while excluding

others. (Use the format described by RFC 2254.)

The following search term examples match users only:

Active Directory. objectClass=user

Open LDAP. objectClass=posixAccount

Radius Port

All RADIUS

The port number for the RADIUS server. You can enter a value

authentication

between 1 and 65535. The default port number is 1812.

types except

Repeat

The period in seconds that the UTM waits for a response from a

MSCHAP and

MSCHAPv2

RADIUS server. You can enter a value between 1 and 10. The

default is 3 seconds.

Timeout

The maximum number of times that the UTM attempts to connect

to a RADIUS server. You can enter a value between 3 and 30. The

default is 5 times.