Mettle Knowledge
Search:     Advanced search
Browse by category:

LDAP Server Configuration

Views: 2209
Votes: 0
Posted: 03 Aug, 2012
by: Knowledge M.
Updated: 03 Aug, 2012
by: Knowledge M.
Adding a new LDAP server

  • Go to System >> User Manager >> Servers
  • Click 'Add New' to add a new authentication server
  • Enter a 'Descriptive Name'
  • Select The Type of Authentication Server - LDAP

LDAP Server Settings

  • Hostname of IP Address : Enter the IP address or hostname of the LDAP authentication server
  • Port Value : Enter the port in which the LDAP service listens (default : 389)
  • Transport : 'TCP - Standard' for LDAP over TCP (port 389)  and 'SSL - Encrypted' for LDAP over SSL (port 636)
  • Peer Certificate Authority : Select the Certicate Authority ( It will be used only if 'SSL - Encrypted' Transport mode is used) This should match the CA LDAP
  • Protocol version : Select the LDAP protocol version
  • Search scope : One-Level to search entries immediately below the Base DN. Entire Subtree to search the entire subtree starting at Base DN. Also specify the Base DN (The entry relative to which the searches should be performed)
  • Authentication containers : Enter the ones in which users that will have access are. (eg: CN=Users,DC=domain,DC=local or OU=VPNUsers,DC=domain,DC=local)
  • Bind credentials : Anonymous Bind or Simple Bind. Select the Check box for anonymous state connection. If it is unchecked, then Enter the User DN's name and password for Simple Bind Authentication
  • Initial Template : Select the Template of the Authentication Server ( OpenLDAP , Microsoft AD or Novell eDirectory). Depends on the Authentication Server
  • User naming attribute : Specify the naming attribute used in the server for describing usernames ( eg : cn)
  • Group naming attribute : Specify the naming attribute used in the server for describing group names
  • Member naming attribute : Specify the naming attribute used in the server to specify the 'member of ' relationship.
  • Click Save.

Also read
document Configuring Client-less SSL VPN

Others in this Category
document Monitoring The Internet Usage
document Fine Tuning The Content Scanner
document Setting Up Mettle SE Stack for Active/Passive Fail-Over
document Connecting & Securing a Leased Line Connection to Mettle SE
document Blocking GTalk in the LAN
document Blocking Yahoo! IM from the LAN
document NTP Client/Server
document Captive Portal
document Virtual IP Address
document Creating Tagged VLANs
document Wake On LAN
document Changing default Web UI Port and Protocol
document Mettle SE Module Updates
document Mettle SE Log Graphs
document Backup and Restore Mettle SE Running Configuration
document Remote Event Logging To Remote Syslog Server
document Dynamic DNS Client
document Gateway Antivirus: Basic configuration