Chapter 38 AAA Server
Figure 390 Basic Directory Structure
| Sprint | Sales |
|
|
|
|
|
| |||||
|
|
|
|
|
|
|
|
|
| ||||
US | RD3 |
|
|
|
|
|
|
|
|
|
| ||
|
|
|
|
|
|
|
|
|
| ||||
|
|
|
|
|
|
|
|
|
|
| |||
|
|
|
|
|
|
|
|
|
| ||||
|
|
|
|
|
|
|
|
|
|
| |||
UPS | QA |
|
|
|
|
|
|
|
|
| |||
|
|
|
|
|
|
|
|
| |||||
|
|
|
|
|
|
|
|
| |||||
Root | CSO |
|
|
|
|
|
| ||||||
|
|
|
|
|
| ||||||||
|
|
|
|
|
| ||||||||
|
|
|
|
|
| ||||||||
Japan | NEC | Sales |
|
|
|
|
|
|
|
| |||
|
|
|
|
|
|
|
|
|
| ||||
|
|
|
|
|
|
|
|
| |||||
|
|
|
|
|
|
| |||||||
| RD |
|
|
|
|
|
|
|
|
|
|
| |
|
|
|
|
|
|
|
|
|
|
|
| ||
|
|
|
|
|
|
|
|
|
|
|
| ||
|
|
|
|
|
|
|
|
|
| ||||
|
|
|
|
|
|
|
| ||||||
Countries (c) | Organizations (o) Organization Units (ou) Unique |
|
| ||||||||||
Common Name (cn)
38.2.2 Distinguished Name (DN)A DN uniquely identifies an entry in a directory. A DN consists of
cn=domain1.com, ou = Sales, o=MyCompany, c=US cn=domain1.com, ou = Sales, o=MyCompany, c=JP
38.2.2.1 Base DN
A base DN specifies a directory. A base DN usually contains information such as the name of an organization, a domain name and/or country. For example, o=MyCompany, c=UK where o means organization and c means country.
38.2.2.2 Bind DN
A bind DN is used to authenticate with an LDAP/AD server. For example a bind DN of cn=zywallAdmin allows the ZyWALL to log into the LDAP/AD server using the user name of zywallAdmin. The bind DN is used in conjunction with a bind password. When a bind DN is not specified, the ZyWALL will try to log in as an anonymous user. If the bind password is incorrect, the login will fail.
38.2.3 Configuring Active Directory or LDAP Default Server SettingsTo configure the Active Directory or LDAP default server settings, click Object > AAA Server > Active Directory (or LDAP) to display the screen as shown.
| 533 |
ZyWALL USG 1000 User’s Guide | |
|
|