User manual
Motorola RF Switch CLI Reference Guide
19-26
Usage Guidelines
Use the login filter and group filter values (described in the example below) for all LDAP
configuration scenarios
Use the
passwd parameter to enter the password for the active directory user mentioned
in bind -dn. This is used for the initial login to the active directory.
The
passwd-attr and group-membership is retained as described in the following
example:
Example
RFSwitch(config)#ldap-server primary host xxx.xxx.x.xx port
389 login (sAMAccountName=%{Stripped-User-Name:-%{User-
Name}}) bin
d-dn cn=admin,ou=wid,dc=symbolTech,dc=local base-dn
ou=wid,dc=symbolTech,dc=local passwd SYMBOL@123 passwd-attr
UserPassword
group-attr cn group-filter
(|(&(objectClass=group)(member=%{Ldap-
UserDn}))(&(objectClass=GroupOfUniqueNames)(uniquemember=%{L
dap-UserDn}))) group-membership radiusGroupName net-timeout
1
RFSwitch(config)#
ldap-server secondary host
<IP> port <1-65535> login
<user-name> bind-dn
<distinguished-name>
base-dn
<distinguished-name>
passwd
{<password>|<password>
|<password>}
passwd-attr <password-
attribute> group-attr
<group-attribute>
group-filter <group-filter>
group-membership
<group> net-timeout
<1-10>
Defines the secondary LDAP server’s configuration.