User Guide
Chapter 6 Configuring authentication 255
Nortel Secure Network Access Switch 4050 User Guide
enaldaps true|false
If true, makes LDAP requests between the Nortel
SNAS 4050 and the LDAP server occur over a secure
SSL connection (LDAPS). The default is false. Retain
the default value or reset to
false.
Note: The default TCP port number used by the LDAP
protocol is 389. If LDAPS is enabled, change the port
number to 636.
enauserpre true|false
Enables or disables storage of user preferences in an
external LDAP/Active Directory database.
•
true — storage and retrieval of user preferences
is enabled. When the client logs out from a portal
session, the Nortel SNAS 4050 saves any user
preferences accumulated during the session in the
isdUserPrefs attribute. The next time the client
successfully logs on through the portal, the Nortel
SNAS 4050 retrieves the LDAP attribute from the
LDAP database.
•
false — storage and retrieval of user preferences
is disabled.
To support storage and retrieval of user preferences,
you must extend the LDAP server schema with one
new ObjectClass and one new Attribute. For more
information, see Appendix E, “Adding User
Preferences attribute to Active Directory,” on page 883.
The default is false.
timeout <interval>
Sets the timeout interval for a connection request to an
LDAP server. At the end of the timeout period, if no
connection has been established, authentication will
fail.
• interval is an integer that indicates the time
interval in seconds (
s), minutes (m), or hours (h). If
you do not specify a measurement unit, seconds is
assumed. The range is 1–10000 seconds. The
default is 5 seconds.
activedire
Accesses the Active Directory menu, in order to
manage client passwords (see “Managing Active
Directory passwords using the CLI” on page 260).
/cfg/domain 1/aaa/auth #/ldap
followed by: