User's Manual
280 Using the CMC Directory Service
Figure 8-5. Configuration of CMC with Generic LDAP
Configuring the Generic LDAP Directory to Access CMC
The CMC's Generic LDAP implementation uses two phases in granting
access to a user. Phase 1 begins with user authentication, followed by phase 2
for user authorization.
Authentication and Authorization of the LDAP Users
Some directory servers require a bind before any searches can be performed
against a specific LDAP server. The steps for authentication are:
1
Optionally bind to the Directory Service. The default is an anonymous
bind.
2
Search for the user based upon their user login. The default attribute is
uid
.
3
If more than one object is found, then the process returns an error.
Role
Group
Role
Group Name
and Domain
Name
Role
Definition
User
Configuration on Generic
LDAP Side
Configuration on
CMC Side