Management and Configuration Guide (Includes ACM xl) 2005-12

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

151

152

153

154

155

156

157

158

159

160

5-12 ProCurve Secure Access 700wl Series Management and Configuration Guide

Configuring Authentication

If you select User bind, the remaining fields on the page are as follows:

» For detailed instructions for setting up an Active Directory server, see “Using the Active Directory

LDAP Service” on page 5-12.

» For detailed instructions for setting up a Netscape or iPlanet server, see “Using a Netscape or iPlanet

Directory Service” on page 5-14.

Using the Active Directory LDAP Service

This section guides you through the configuration choices for authenticating using Active Directory

LDAP.

Step 1. Type the basic information for your Active Directory service:

a. Type a name for this authentication service. This can be any alphanumeric string.

Password Field The attribute that contains the user password to be retrieved. The default is

the attribute userPassword.

Password Encryption The method used to encrypt the password when returning it to the 700wl

Series system. Select one of the following: Crypt, SHA, SSHA, MD5, SMD5,

or no encryption (CLEAR). The default is Crypt.

• Crypt

• SHA

• SSHA

• MD5

• SMD5

• CLEAR – no encryption

Anonymous bind Select this to bind anonymously without a username and password.

(Not all LDAP server implementations allow this option.)

Bind using rootdn/rootpw Select this to bind using the root DN and password for the LDAP server.

Rootdn The root Distinguished Name for your LDAP server

Rootpw The root password for your LDAP server

Table 5-5. LDAP Authentication Configuration Options, User Bind

Field/Option Description

User bind string String defining the user DN for the user-level bind. String will be of the form

cn=%s,cn=user. The actual user logon name is substituted for the %s

variable. Optionally you can type the base DN portion into this string, or the

Base DN, as specified in the Base DN field, can be appended automatically.

Append the base DN to the above

bind string

Check this box to have the Base Distinguished Name (as specified in the

Base DN field) appended to the User bind string.

Note: You can type a base DN directly as part of the user bind string instead

of checking this option.

Table 5-4. LDAP Authentication Configuration Options, Non-User Bind

Field/Option Description