Reference Guide
Parameter Description Range Default
host <ip-addr>
IP address of the LDAP server, in dotted-decimal format. — —
key-attribute
<string>
Attribute that should be used as a key in search for the
LDAP server. For Active Directory, the value is
sAMAccountName.
— sAMAc-
countName
max-connection
Maximum number of simultaneous non-admin connections
to an LDAP server.
— —
no
Negates any configured parameter. — —
preferred-conn-type
Preferred connection type. The default order of connection
type is:
1. ldap-s
2. start-tls
3. clear-text
The controller will first try to contact the LDAP server
using the preferred connection type, and will only attempt
to use a lower-priority connection type if the first attempt
is not successful.
NOTE: You enable the allow-cleartext option before you
select clear-text as the preferred connection type. If you
set clear-text as the preferred connection type but do not
allow clear-text, the controller will only use ldap-s or
start-tls to contact the LDAP server.
ldap-s
start-tls
clear-text
ldap-s
timeout <seconds>
Timeout period of a LDAP request, in seconds. 1-30 20 seconds
Usage Guidelines
You configure a server before you can add it to one or more server groups. You create a server group for a specific
type of authentication (see "aaa server-group" on page 82).
Example
The following command configures and enables an LDAP server:
aaa authentication-server ldap ldap1
host 10.1.1.243
base-dn cn=Users,dc=1m,dc=corp,dc=com
admin-dn cn=corp,cn=Users,dc=1m,dc=corp,dc=com
admin-passwd abc10
key-attribute sAMAccountName
filter (objectclass=*)
enable
Command History
This command was available in ArubaOS 3.0.
Command Information
Platforms Licensing Command Mode
All platforms Base operating system Config mode on master controllers
Dell PowerConnect W-Series ArubaOS 6.2 | Reference Guide aaa authentication-server ldap | 31