Managing active directory passwords, Managing – Nortel Networks 5500 series User Manual

198

Configuring authentication

Table 40
Group Search Configuration (cont’d.)

memberattr

Defines the LDAP attribute that has the group
member’s name.

The default value is uniqueMember.

ena

Enables the group search feature.

dis

Disables the group search feature.

Managing Active Directory passwords

You can set up a mechanism for clients to change their passwords when
the passwords expire.

Step

Action

1

Define a user group in the Local database for users whose
passwords have expired.

2

Create a linkset and link to a site where the user can change the
password (see

“Configuring groups” (page 156)

).

3

Map the linkset to the group (see

“Mapping linksets to a group

or profile” (page 167)

).

4

Set the Active Directory settings using the

/cfg/doamin

#/aaa/auth #/ldap/activedire

command.

--End--

To manage clients whose passwords have expired or who need to change
their passwords, use the following command:

/cfg/doamin #/aaa/auth #/ldap/activedire

The Active Directory Settings menu appears.

The Active Directory Settings menu includes the following options:

Nortel Secure Network Access Switch

Using the Command Line Interface

NN47230-100

03.01

Standard

28 July 2008

Copyright © 2007, 2008 Nortel Networks

.