Cisco ASA 5505 User Manual

Page 1924

Advertising
background image

C-26

Cisco ASA 5500 Series Configuration Guide using the CLI

Appendix C Configuring an External Server for Authorization and Authentication

Configuring an External LDAP Server

Figure C-12

Active Directory Properties Dialog Box

Step 3

Create an attribute map.

The following example shows how to create the attribute map access_hours and map the AD attribute
physicalDeliveryOfficeName used by the Office field to the Cisco attribute Access-Hours.

hostname(config)# ldap attribute-map access_hours

hostname(config-ldap-attribute-map)# map-name physicalDeliveryOfficeName Access-Hours

Step 4

Associate the LDAP attribute map to the AAA server.

The following example enters the aaa server host configuration mode for the host 10.1.1.2, in the AAA
server group MS_LDAP, and associates the attribute map access_hours that you created in Step 3:

hostname(config)# aaa-server MS_LDAP host 10.1.1.2

hostname(config-aaa-server-host)# ldap-attribute-map access_hours

Step 5

Configure time ranges for each value allowed on the server.

The following example configures Partner access hours from 9am to 5pm Monday through Friday:

hostname(config)# time-range Partner

hostname(config-time-range)# periodic weekdays 09:00 to 17:00

Advertising
This manual is related to the following products:

ASA 5585-X, ASA 5555-X, ASA 5545-X, ASA 5525-X, ASA 5515-X, ASA 5512-X, ASA 5580, ASA 5550, ASA 5540, ASA 5520, ASA 5510, ASA 5500 Series

Popular Brands
Popular manuals