Raritan Engineering Command Center CC-SG User Manual
Page 136
120 C
OMMAND
C
ENTER
S
ECURE
G
ATEWAY
A
DMINISTRATOR
G
UIDE
5. Specify a Base DN (directory level/entry) under which the authentication search query will
be executed.
E
XAMPLE
D
ESCRIPTION
dc=raritan,dc=com
The search query for the user entry
will be made over the whole directory
structure.
cn=Administrators,cn=Users,dc=raritan,dc=com
The search query for the user entry
will be performed only in the
Administrators sub-directory (entry).
6. Type a user’s attributes in Filter so the search query will be restricted to only those entries
that meet this criterion. By default, the filter is objectclass=user which means that only
entries of type user are searched.
7. Specify the way in which the search query will be performed for the user entry. If you check
Use Bind, CC-SG attempts to connect (bind) to AD directly with the username and password
supplied in the applet. However, if a username pattern is specified in Bind username pattern,
the pattern will be merged with the username supplied in the applet and the merged username
will be used to connect to the AD server.
For example, if you have cn={0},cn=Users,dc=raritan,dc=com and TestUser has been
supplied in the applet, then CC-SG uses cn=TestUser,cn-Users,dc=raritan,dc=com to
connect to the AD server. Only check Use Bind when the user logging in from the applet has
permissions to perform search queries in the AD server.
8. Check Use Bind After Search to use the username and password specified in the General
tab to connect to the AD server. The entry is searched in the specified Base DN and is found
if it meets the specified filtering criterion and if the attribute “samAccountName” is equal to
the username entered in the applet. Then a second connection (bind) is attempted using the
username and password supplied in the applet. This second bind assures that the user
provided the correct password.