User guide
Chapter 13: Command Line Interface
133
secondaryldap
radius
primaryradius
secondaryradius
tacacsplus
primarytacacs
secondarytacacs
Note: When configuring the LDAP server, the query string format on the
server should contain the name of a group configured on the Dominion
SX.
When configuring the Radius server, the Filter-ID format for the users on
the server should have the following format
“raritan:G{GroupOnSX}:D{DialbackNumber}“.
When configuring the TACACS+ server, the user-group format for the
user on the server should contain the name of a group configured on the
Dominion SX.
If you use older formats of "op:1:2:4" or “a:*” , the system will allow you to
log in and will restrict port accessibility according to user types and their
limitations. The Dominion SX will not have any database information
about groups at this time and will therefore display the following
message in the banner after login.
Error: Cannot get group information
The port display will show all ports because the client will not know which
port limitations exist.
LDAP Configuration Menu
The LDAP configuration menu offers commands to set up LDAP and
LDAPS.
LDAP is entered by typing ldap at the following prompt:
admin > Config > Authentication > ldap
LDAP
Command
Description
ldaps
Switches to the ldaps menu which includes
the following commands:
getservercert - FTP Retrieval of ldap
certificate
removecert - Remove LDAPS Certificate
viewcert - View LDAPS Certificate