Release Notes
41 | aaa authentication-server ldap Dell Networking W-Series ArubaOS 6.4.x| Reference Guide
Parameter Description Range Default
filter <filter>
Filter that should be applied to search of the
user in the LDAP database. The default filter
string is (objectclass=*).
— (objectclass=*)
host <ip-addr>
IP address of the LDAP server, in dotted-
decimal format.
— —
key-attribute <string>
Attribute that should be used as a key in
search for the LDAP server. For Active
Directory, the value is sAMAccountName.
— sAMAccountName
max-connection
Maximum number of simultaneous non-
admin connections to an LDAP server.
— —
no
Negates any configured parameter. — —
preferred-conn-type
Preferred connection type. The default
order of connection type is:
1. ldap-s
2. start-tls
3. clear-text
The controller will first try to contact the
LDAP server using the preferred connection
type, and will only attempt to use a lower-
priority connection type if the first attempt is
not successful.
NOTE: You enable the allow-cleartext
option before you select clear-text as the
preferred connection type. If you set clear-
text as the preferred connection type but do
not allow clear-text, the controller will only
use ldap-s or start-tls to contact the LDAP
server.
ldap-s
start-tls
clear-text
ldap-s
timeout <seconds>
Timeout period of a LDAP request, in
seconds.
1-30 20 seconds
Usage Guidelines
You configure a server before you can add it to one or more server groups. You create a server group for a
specific type of authentication (see aaa server-group on page 102).
Example
The following command configures and enables an LDAP server:
aaa authentication-server ldap ldap1
host 10.1.1.243
base-dn cn=Users,dc=1m,dc=corp,dc=com
admin-dn cn=corp,cn=Users,dc=1m,dc=corp,dc=com
admin-passwd abc10
key-attribute sAMAccountName
filter (objectclass=*)
enable
Command History
This command was available in ArubaOS 3.0.