HP 3PAR Operating System Software User Manual
Page 72
7.
For Simple binding:
a.
Select a value in the Start-TLS list:
no – The LDAP server does not use TLS protocol to create an encrypted connection (default).
try – The LDAP server attempts to start the TLS protocol, but binding proceeds even if TLS
cannot start.
require – The LDAP server most start the TLS protocol to continue.
b.
Enter the Group DN (the Distinguished Name for groups).
c.
Enter the User Base DN. The authentication process attempts to bind the user to an entry
in the server's DIT (directory information tree). The DN (distinguished name) of the entry
is a concatenation of the value of user-attr, "=", the username, ",", and the value of
user-dn-base. If group-obj is set to posixGroup, the value of the user-dn-base is also used
as the base for searching for the user's posixAccount entry, regardless of binding type.
d.
Enter the Group Object Class attribute. The Active Directory default is posixGroup.
e.
Enter the Group Name Attribute. The Active Directory default is cn.
f.
Enter the User Attribute to form a DN for binding. The Active Directory default is uid.
g.
Enter the Member Attribute that contains the names of the users. The Active Directory
default is memberUid.
h.
(Optional) Select the Use Certificate checkbox to require a valid server certificate. If you
select the checkbox, the Enter Certificate button will be enabled. You will then be required
to provide an LDAP server name.
i.
Click the Enter Certificate button to display the Certificate dialog box. You may either
select a local Certificate File or paste the copied certificate text into the textbox
provided. For more information, see
ii.
Enter the host LDAP Server Name.
72
Managing LDAP with Security & Domains Manager