H3C Technologies H3C SecPath F1000-E User Manual

369

NOTE:

For successful LDAP authentication of a user, you must also configure the account information and the user
group attribute information for the user on the LDAP server, and make sure that the user groups configured
on the authentication server exist on the SSL VPN gateway. Otherwise, the user cannot log in.

Select VPN > SSL VPN > Domain Management > Authentication Policy from the navigation tree and click
the LDAP Authentication tab. The LDAP authentication configuration page appears, as shown in

Figure

253

.

Figure 253 LDAP authentication

Table 53 Configuration items

Item Description

Enable LDAP
authentication

Select this item to enable LDAP authentication.

LDAP Sever IP

Specify the IP address of the LDAP server.

Server Port

Specify the TCP port number used by the LDAP server.

Version

Specify the supported LDAP protocol version.

Authentication Policy

Select an authentication policy for LDAP authentication. Options include Password,
Password+Certificate, and Certificate.

User Group Attribute Specify the name of the user group attribute configured on the LDAP server.

Specify conditions to
query user DN

Select this option to query user DN by specified conditions, including the administrator
DN, password, search base DN, and search template.

Admin DN

Enter a user DN that has the administrator rights, which include the right to view the
login user information.

Password

Enter a user password that has the administrator right and enter the password again to
confirm the password.

Confirm Password

Search Base DN

Specify a search base DN.