Appendix b: configuring ldap servers, Microsoft active directory, Prerequisites – TANDBERG Gatekeeper User Manual

TANDBERG Gatekeeper User Guide

Page 95 of 105

18.

Appendix B: Configuring LDAP Servers

18.1.

Microsoft Active Directory

18.1.1.

Prerequisites

These comprehensive step-by-step instructions assume that Active Directory is installed. For details on

installing Active Directory please consult your Windows documentation.
The following instructions are for Windows Server 2003 Enterprise Edition. If you are not using this

version of Windows, your instructions may vary.

18.1.2.

Adding H.350 objects

1. Create the organizational hierarchy
Open up the Active Directory Users and Computers MMC snap-in. Under your BaseDN right-click and

select New Organizational Unit. Create an Organizational unit called h350.

Note: It is good practice to keep the H.350 directory in its own organizational unit to separate out

H.350 objects from other types of objects. This allows access controls to be setup which only

allow the Gatekeeper read access to the BaseDN and therefore limit access to other sections of

the directory.

2. Add the H.350 objects

Create an

ldif

file with the following contents:

# MeetingRoom1 endpoint

dn: commUniqueId=comm1,ou=h350,dc=my-domain,dc=com

objectClass: commObject

objectClass: h323Identity

objectClass: h235Identity

commUniqueId: comm1

h323Identityh323-ID: MeetingRoom1

h323IdentitydialedDigits: 626262

h235IdentityEndpointID: meetingroom1

h235IdentityPassword: mypassword

Add the

ldif

file to the server using the command:

ldifde -i -c DC=X -f filename.ldf

This will add a single H.323 endpoint with an H.323 Id alias of MeetingRoom1 and an E.164 alias of

626262. The entry also has H.235 credentials of id meetingroom1 and password mypassword which

are used during authentication.