Therefore, sAMAccountName=RICARDO and sAMAccountName=ricardo are the same and works whereas samaccountname=RICARDO and samaccountname=ricardo does not. Note: sAMAccountName is case sensitive but person is not. The WLC matches the User Attribute and Object Type specified. No, a base DN that includes all the containers needed can be specified.
What if there are users in different containers? Do all involved wireless LDAP users need to be in the same container?.If the answer is Yes, then use the username only. For example:ĬN=Administrator,CN=Domain Admins,CN=Users,DC=labm,DC=cisco,DC=com The way to specify the username depends on the answer: If authenticated, you need to ask: is the bind username inside the same container than all users?.This bind username needs to have Administrator privileges to be able to query for other usernames/passwords. There are two ways to bind against an LDAP Server, Anonymous or Authenticated (refer to in order to understand the difference between both methods). What username must be used to bind with the LDAP Server?.
WEB BASED LDAP QUERY TOOL HOW TO
The most difficult part of this setup is to configure the LDAP server parameters correctly on the WLC.įor more detailed information about these concepts, refer to the Introduction section of How to configure Wireless Lan Controller (WLC) for Lightweight Directory Access Protocol (LDAP) authentication.Objects are organized in containers such as Organizational Units called OU, Groups or default Microsoft Containers as CN=Users.Directory servers are hierarchical, object oriented databases.LDAP is a protocol used to access directory servers.Background Information Technical Background If your network is live, make sure that you understand the potential impact of any command or change. All of the devices used in this document started with a cleared (default) configuration. The information in this document was created from a specific lab environment.
WEB BASED LDAP QUERY TOOL SOFTWARE
The information in this document is based on these software versions: Prerequisites RequirementsĬisco recommends that you have knowledge of these topics: This document describes the procedure to configure an AireOS Wireless LAN Controller (WLC) in order to authenticate clients with a Lightweight Directory Access Protocol (LDAP) Server as the users database.
0 kommentar(er)
