5 ldap parameter setup, Bed in, Nue in chapter – Cisco TD 92322GB User Manual

Page 22

Advertising
background image

TD 92322GB

2007-06-26/ Ver. D

Installation and Operation Manual
Integrated Message Server, IMS/IP-WiFi

19

7.5

LDAP Parameter Setup

The Lightweight Directory Access Protocol (LDAP) is an application protocol for querying
and modifying directory services running over TCP/IP. The IMS/IP starts an LDAP session by
connecting to an LDAP server. The IMS/IP then sends operation requests to the server, and
the server sends responses in return.

An LDAP directory is a tree of directory entries and follows the structure below:

• An entry consists of a set of attributes.

• An attribute has a name and one or more values.

Figure 2. Each entry has a unique name; the distinguished name (DN). DN consists of its relative distinguished name (RDN) constructed from some attribute(s) in the entry, followed by the parent entry's DN. Think of the DN as a full filename and the RDN as a relative filename in a folder.

An entry can look like this:

dn: cn=John Ericson,dc=company,dc=com

cn: John Ericson

givenName: John

sn: Ericson

telephoneNumber: +1 888 555 6789

Figure 3. mail: [email protected]

dn is the name of the entry; it is not an attribute nor part of the entry. “cn=John
Ericson” is the entry's RDN, and “dc=company, dc=com” is the DN of the parent entry.
The other lines show the attributes in the entry. Attribute names are typically
mnemonic strings, like “cn” for common name, “dc” for domain component, “mail”
for e-mail address and “sn” for surname. See

7.6 Examples of Settings

on page 20.

Figure 4.

1

Click on the View LDAP parameters link.

2

Enter the IP or DNS address to the LDAP server in the LDAP Server Address field.

3

Enter the port number used by the LDAP server in the Port Number field.

4

Select how to authenticate to the LDAP server in the Authentication Method drop
down list.

Note: If the authentication method “SASL/DIGEST-MD5” is selected, the IP address for
primary DNS server must be entered in the DNS server field on the Network. Otherwise it is
not possible to authenticate with the LDAP directory Microsoft Active Directory 2003.

5

Enter the user name used for logging on to the LDAP server in the User name field.

6

Enter the password used for logging on to the LDAP server in the Password field.

7

Enter the user entries' parent DN in the Search Base DN field.
(The distinguished name for all users common entry.)

8

Enter the name of the attribute that holds the phone numbers in the Number
attribute
field.

9

Select the appropriate option in the Type of Name Attribute(s) drop down list.

The option depends on if the name is stored in a single attribute or if it is splitted
into two different attributes.

10

Enter name(s) of the attribute(s) containing first name and family name in the Name
Attribute(s)
field. If two attributes are used, enter the first name on the first line and
the family name on the second line.

11

Enter an error message to be sent as an answer to a phonebook query that was
unsuccessful in the Error message field.

Advertising