User`s guide

Configure Authentication for the CLI

Chapter 8 Users, Security, and Authentication 154

LDAP Authentication

The Digi Passport unit supports authenticating against an LDAP-based

database, including LDAP systems running on Linux servers, and Microsoft

systems running the Microsoft Active Directory with the LDAP gateway

ADAM (Active Directory Application Mode).

If the Digi Passport unit authenticates against an LDAP directory, all users

must be configured in a single container. The Digi Passport unit will extend

the username using the LDAP search base and authenticate the user.

For example, consider a domain named dilbert.com. The LDAP server is

at 10.1.1.1. All users with access to the Digi Passport unit are located in the

container USA Users.

The LDAP authentication for users of the domain is configured as follows:

Authentication method: LDAP server

First LDAP Server 10.1.1.1

Second LDAP Server

LDAP search base: ou=users,ou=usa,dc=dilbert,dc=com

Domain name for active directory:

If the LDAP database resides on a Microsoft system, the Domain name for

the active directory (in the above example, dilbert.com) must be

configured.

If using a non-Microsoft system, do not use this setting, as it changes the

LDAP to comply with Microsoft syntax.