User guide
Chapter 11: Command Line Interface
156
Note: When configuring the LDAP server, the query string format on the
server should contain the name of a group configured on the SX.
When configuring the Radius server, the Filter-ID format for the users on
the server should have the following format
“raritan:G{GroupOnSX}:D{DialbackNumber}“.
When configuring the TACACS+ server, the user-group format for the
user on the server should contain the name of a group configured on the
SX.
If you use older formats of "op:1:2:4" or “a:*” , the system will allow you to
log in and will restrict port accessibility according to user types and their
limitations. The SX will not have any database information about groups
at this time and will therefore display the following message in the
banner after login.
Error: Cannot get group information
The port display will show all ports because the client will not know which
port limitations exist.
LDAP Configuration Menu
The LDAP configuration menu offers commands to set up LDAP and
LDAPS.
LDAP is entered by typing ldap at the following prompt:
admin > Config > Authentication > ldap
LDAP
Command
Description
ldaps
Switches to the ldaps menu which includes
the following commands:
getservercert - FTP Retrieval of ldap
certificate
removecert - Remove LDAPS Certificate
viewcert - View LDAPS Certificate
primaryldap
Used to configure the primary ldap settings.
secondaryldap
Used to configure the secondary ldap
settings.