Specifications
LDAP Technical Specifications 
60 • Advanced Operations  Sentry Commander - PT40   
Simple Bind Authentication Process
LDAP Server SentryClient
Initiate Sentry 
session
Authentication 
request with 
Usename/
Password
Successful 
Bind?
Username 
found?
Successful 
Bind?
Attribute 
match?
Username 
found?
Attribute name 
compared to 
Group 
Membership 
Attribute
Subtree search 
starting from 
User Search Base 
DN with User 
Search Filter
Prompt for login 
credentials
Simple Bind using 
User FQDN and 
login password 
Simple bind using 
Search Bind
DN & Password 
Subtree search 
starting from 
User Search Base 
DN with User 
Search Filter
MD5 Bind Authentication Process
SentryLDAP ServerClient
Access Granted
Username groups 
access rights 
compared against 
Sentry LDAP 
groups
Access Denied
Username groups 
access rights 
compared against 
Sentry LDAP 
groups
Group
 match?
Access Granted
Access Denied
Initiate Sentry 
session
Group
 match?
SASL Digest-MD5 
bind using 
uppercase 
username & 
entered password 
Subtree search 
starting from 
User Search Base 
DN with User 
Search Filter
Prompt for login 
credentials
Attribute name 
compared to 
Group 
Membership 
Attribute
Attribute 
match?
Authentication 
request with 
Usename/
Password
Successful 
Bind?
Username 
found?
    Installation and Operations Manual 










