Specifications
TD 92326GB
2009-03-10 / Ver. E
Installation and Operation Manual
VoIP Gateway
45
8.3.2 Configure Active Directory Replication
During Active Directory (AD) replication the configured LDAP replicator retrieves
onlyrelevant data.
AD replication is a one-way replication where data is only transferred from the AD to the
VoWiFi but not from the VoWiFi to the AD. Data originating from the AD cannot be
modified in the VoWiFi system, but it is possible to change or add those user attributes
locally that are not replicated.
Note: If AD replication is enabled, existing local users are replaced with corresponding
users in the AD, and some local attributes may be deleted. Contact Ascom Technical
Support if you would like to enable AD replication with existing local users. For AD Server
configuration settings, see 8.3.3 Configure AD Server on page 46.
1 Select LDAP > Replicator.
Figure 42. Configure Active Directory Replication
2 Select "Active Directory Replication" in the Type drop-down list.
3 Select the Enable check box.
4 Enter the IP address to the AD in the Server text field.
5 Enter a Distinguished Name (DN) to configure a search base for AD users.
The user information is usually replicated so it is recommended to write "CN=Users,
DC=DomainName" where "DomainName" is the name of the domain on the AD
server.
You can also click "Show Options..." to see some naming contexts on the
configured server.
6 Enter an LDAP filter to retrieve only the relevant LDAP objects from the AD.
A default (objectclass=user) filter is offered, but it is recommended to assign all
VoWiFi users to a group within the AD. For example, the following filter can be
entered to retrieve only VoWiFi users.
"(&(objectClass=user)(memberOf=CN=grp_ipdect,CN=Users,DC=DomainName))"
where "grp_vowifi" is the group created for VoWiFi users, "Users" is the default
folder for users and "DomainName" is the name of the domain on the AD server.
Figure 44.
Figure 45.
Figure 46.