192 Configuring authentication
Table 37
Configuring LDAP settings (cont’d.)
/cfg/doamin #/aaa/auth #/ldap
followed by:
ldapscert Specify the certificate number.
enauserpre true|false Enables or disables storage of user
preferences in an external LDAP/Active
Directory database.
true—storage and retrieval of user
preferences is enabled. When the client
logs out from a portal session, the Nortel
SNAS saves any user preferences
accumulated during the session in the
isdUserPrefs attribute. The next time the
client successfully logs on through the
portal, the Nortel SNAS retrieves the LDAP
attribute from the LDAP database.
false—storage and retrieval of user
preferences is disabled.
To support storage and retrieval of user
preferences, you must extend the LDAP server
schema with one new ObjectClass and one
new Attribute. For more information, see
“Adding User Preferences attribute to Active
Directory” (page 485).
The default is false.
enacutdomain true|false Enablesor disables the cut domain from the
user name.
timeout <interval> Setsthe timeout interval for a connection
request to an LDAP server. At the end of the
timeout period, if no connection has been
established, authentication will fail.
interval is an integer that indicates
the time interval in seconds (s), minutes
(m), or hours (h). If you do not specify a
measurement unit, seconds is assumed.
The range is 1–10000 seconds. The default
is 5 seconds.
activedire Accesses the Active Directory menu, in order
to manage client passwords (see “Managing
Active Directory passwords” (page 198)).
Nortel Secure Network Access Switch
Using the Command Line Interface
NN47230-100 03.01 Standard
28 July 2008
Copyright © 2007,2008 NortelNetworks
.