Manualshelf

Specifications

ManualsBrandsServer Technology ManualsComputer equipmentPT22
919293949596979899100
Advanced Operations 99
Installation and Operations Manual
Setting the LDAP bind password type:
The Set LDAP Bind command sets the password type used in the bind requests. The PT22 supports two
standard LDAP bind methods: Simple and MD5.
The Simple method uses unencrypted delivery of a username-password over the network to the Active
Directory server for authentication.
The MD5 digest method provides much stronger protection using 1-way hash encoding that never
transmits the username-password over the network.
NOTE: Windows 2000 supports only Simple binding. Windows 2003 supports both Simple binding and MD5 binding.
To set the bind password type:
At the Switched CDU: prompt, type set ldap bind, followed by simple and press Enter.
NOTE: If MD5 binding is enabled, LDAP over TLS/SSL is disabled.
Setting the search bind Distinguished Name (DN):
The Set LDAP BindDN command is used to set the fully-qualified distinguished name (FQDN) for user
accounts to bind with. This is required for directory services that do not support anonymous binds.
This field is used ONLY with Simple Binds.
Maximum string length is 124 characters.
NOTE: If left blank, then an anonymous bind will be attempted. This field is used only with Simple binds.
To set the search bind DN:
At the Switched CDU: prompt, type set ldap binddn, and press Enter. At the following prompt, type
the FQDN and press Enter.
Example
The following sets the FQDN for MSAD to ‘cn=guest,cn=Users,dc=servertech,dc=com’:
Switched CDU: set ldap binddn<Enter>
Enter Search Bind DN (Max characters 124):
cn=guest,cn=Users,dc=servertech,dc=com<Enter>
Setting the search bind Distinguished Name (DN) password:
The Set LDAP BindPW command is used to set the password for the user account specified in the
Search Bind DN.
Maximum password size is 20 characters.
To set the Bind Password DN:
At the Switched CDU: prompt, type set ldap bindpw and press Enter. At the following prompt, type
the bind password and press Enter.
Setting the group membership attribute:
The Set LDAP GroupAttr command is used to specify the name of user class attributes that lists
distinguished names (DN), or names of groups that a user is a member of. Maximum string length is 30
characters.
To set Group Membership Attribute:
At the Switched CDU: prompt, type set ldap groupattr and press Enter. At the following prompt,
type the group membership attribute and press Enter.
Example
The following sets the group membership attribute for MSAD to ‘memberof’:
Switched CDU: set ldap groupattr<Enter>
Enter Group Member Attr (Max character 30):
memberof<Enter>