HP XP P9500 Storage User Manual

Description

Item

Specify an LDAP protocol to use. Available protocols are as follows.

Authentication Protocol

•

LDAP over SSL/TLS

•

STARTTLS

If you select Enable in DNS Lookup, you cannot select LDAP over SSL/TLS.

Specify whether to connect an authentication server to an authorization server.

External User Group Mapping

•

Enable: Connects an authentication server to an authorization server.

•

Disable: Does not connect an authentication server to an authorization server.

Specify a host name of the LDAP server.

External User Group Mapping -
Host Name

ASCII code characters, hyphens (-), and periods (.) can be specified.

If you select Enable in DNS Lookup, this item is disabled.

Specify a port number of the LDAP server.

External User Group Mapping -
Port Number

If you select Enable in DNS Lookup, this item is disabled.

Specify a domain name that the LDAP server manages.

External User Group Mapping -
Domain Name

You can specify ASCII code characters, hyphens (-), and periods (.).

Specify an attribute name to identify a user, such as a user ID.

External User Group Mapping -
User Name Attribute

You can specify ASCII code characters and the following symbols:

! # $ % and ' ( ) * + , -. / : ; < = > ? @ [ \ ] ^ _` { | } ~

•

Hierarchical model

Specify an attribute name where the value that can identify a user is stored.

•

Flat model

Specify an attribute name for a user entry's RDN.

Specify the number of seconds before connection to the LDAP server times out.

External User Group Mapping -
Timeout

Specify a retry interval in seconds when the connection to the LDAP server fails.

External User Group Mapping -
Retry Interval

Specify retry times when the connection to the LDAP server fails.

External User Group Mapping -
Number of Retries

Specify a base DN to search for users to authenticate.

External User Group Mapping -
Base DN

Available characters: Alphanumeric characters (ASCII characters) and all symbols.

•

Hierarchical model

Specify a DN of hierarchy that includes all the targeted users for searching.

•

Flat model

Specify a DN of hierarchy that is one level up of the targeted user for searching.

You can enter alphanumeric characters and all symbols. Note, however, that when
you enter symbols like the following, you need to use a backslash to escape for each
symbol:

+ ; , < = > \ / "

In some cases, you may need to use a backslash and an ASCII character to escape.

•

\ -> \5c (hexadecimal)

•

/ -> \2f (hexadecimal)

•

"-> \22 (hexadecimal)

Search for a user by specifying a DN.

External User Group Mapping -
Search User's DN

Available characters: Alphanumeric characters (ASCII characters) and all symbols.

Setup Server for LDAP 183