254Chapter 6 Configuring authentication

/cfg/domain 1/aaa/auth #/ldap followed by:

userattr <names>

Refers to one of the following:

 

1. the LDAP attribute that contains the user name

 

used for authenticating a client in the domain

 

The default user attribute name is uid.

 

Do not use the isdbinddn and isdbindpas

 

commands.

 

2. if the client’s portal logon name is different from the

 

RDN (for example, when using LDAP for

 

authentication towards Active Directory), the LDAP

 

attribute that is used in combination with the client’s

 

logon name to search the DIT

 

For example, a user record in Active Directory is

 

defined as the following DN: cn=Bill Smith,

 

ou=Users, dc=example, dc=com. The

 

user record also contains the attribute

 

sAMAccountName=bill. The user’s login

 

name is bill. If the user attribute is defined as

 

sAMAccountName, the user record for Bill Smith

 

will be found.

 

The isdbinddn and isdbindpas parameters

 

are required so that the Nortel SNAS 4050 can

 

authenticate itself to the LDAP server, in order to

 

search the DIT.

 

 

isdbinddn <DN>

Specifies an entry in the LDAP server used to

 

authenticate the Nortel SNAS 4050 to the LDAP server,

 

so that the LDAP DIT can be searched.

 

The isdBindDN corresponds to an entry created in

 

the Schema Admins account (for example, cn=ldap

 

ldap, cn=Users, dc=example, dc=com).

 

Required for searchbase and userattr

 

method 2.

 

 

isdbindpas <password>

Specifies the password used to authenticate the Nortel

 

SNAS 4050 to the LDAP server. The isdbindpas is

 

the password, configured in the Schema Admins

 

account, for the entry referenced in isdBindDN.

 

Required for searchbase and userattr

 

method 2.

 

 

ldapmacro

Accesses the LDAP Macro menu, in order to manage

 

macros (see “Managing LDAP macros using the CLI”

 

on page 258).

 

 

320818-A

Page 254
Image 254
Nortel Networks 4050 manual Userattr names, Ou=Users, dc=example, dc=com, SAMAccountName=bill . The user’s login, Ldapmacro