Configuring ldap authentication – Nortel Networks 5500 series User Manual
Page 187
Configuring authentication
187
Table 36
Configuring session timeout
/cfg/doamin #/aaa/auth #/radius/sessiontim
followed by:
vendorid <vendor ID>
Specifies the vendor-specific attribute used
by the RADIUS server to send a session
timeout value to the Nortel SNAS. The default
Vendor-Id is 0.
With the Vendor-Type also set to 0 (the default
value), the RADIUS server sends the standard
attribute for session timeout.
vendortype <vendor
type>
Specifies the Vendor-Type value used in
combination with the Vendor-Id to identify the
session timeout value to send to the Nortel
SNAS. The default is 0.
ena
Enables retrieval of the RADIUS server
session timeout value. The default is disabled.
dis
Disables retrieval of the RADIUS server
session timeout value. The default is disabled.
Configuring LDAP authentication
To configure the Nortel SNAS domain to use an external LDAP server for
authentication, use the following command:
/cfg/doamin #/aaa/auth <auth ID>
where
auth ID
is an integer in the range 1 to 63 that uniquely identifies
the authentication method in the Nortel SNAS domain. If you do not
specify the
auth ID
in the command, you are prompted for it.
When you first create the method for the domain, you must enter the
authentication ID. After you have created the method and defined a name
for it, you can use either the ID or the name to access the method for
configuration.
You can perform the following configuration tasks:
•
“Adding the LDAP authentication method” (page 188)
•
“Modifying LDAP configuration settings” (page 189)
•
“Managing LDAP authentication servers” (page 193)
•
“Managing LDAP macros” (page 195)
•
“Managing Active Directory passwords” (page 198)
Nortel Secure Network Access Switch
Using the Command Line Interface
NN47230-100
03.01
Standard
28 July 2008
Copyright © 2007, 2008 Nortel Networks
.