user manual
8-61
User Guide for Cisco Digital Media Manager 5.4.x
OL-15762-05
Chapter 8 Authentication and Federated Identity
Reference
Network Policy FAQs
Q.
When I use LDAP authentication with Cisco DMS, which ports must remain open in my network?
A.
Your DMM appliance accepts user authentication requests securely through port 443. DMM then
passes these requests securely to your Active Directory server through port 389. Also, SSL uses
port 636.
User Exclusion FAQs
Q.
Can I block Cisco DMS access to one particular Active Directory user account, when it is among the matched
results for an otherwise useful LDAP filter?
A.
Yes. Extend your query to include a logical NOT (
!
) operator for an attribute whose value is unique
to this user. This example uses the LDAP “
samAccountName
” attribute name, which DMM uses by
default to populate the corresponding login name for DMM. However, if your Active Directory
server uses any other attribute name than “
samAccountName
” for this purpose, you must update the
example syntax accordingly when you extend your query.
(&(currentFilter)(samAccountName!=
username-to-be-excluded
))
Tip Information on the Manage Attributes property sheet in DMS-Admin confirms whether your Active Directory
server uses the
“
samAccountName
”
attribute name.