sh ldap LDAP Configuration: ------------------- LDAP Authentication is enabled Allow mode: enabled Base DN: dc=pty,dc=yuden,dc=co,dc=jp Filter: Retransmits: 2 Timeout: 5 seconds UID Attribute: Administrator Group Attribute: ou Administrative DN: CN=administrator,CN=Users,DC=pty,DC=yuden,DC=co,DC=jp Administrative Password: **** LDAP version: 2 LDAP port: 389 Server Status --------------- --------- 192.168.150.8 primary secondary ptyproxy#show access-list 300 Access Control List Configuration --------------------------------- Access Control List is enabled Groupname-based List (300) 1. permit groupname Users 2. deny groupname any ptyproxy#sh run hostname ptyproxy ! ! dns-cache size 65536 ! http authentication cache max-entries 8000 http cache-on-abort enable http cache-on-abort max-threshold 1048 http cache-on-abort min-threshold 64 http cache-on-abort percent 80 http proxy incoming 80 http proxy outgoing host 192.168.135.54 80 primary http proxy outgoing monitor 30 http proxy outgoing origin-server http max-ttl days text 5 binary 7 http min-ttl 7200 ! ftp proxy incoming 80 8080 ftp proxy outgoing host 192.168.135.54 80 ! clock timezone CCT 8 0 ! ! ip domain-name CPNTDOMAIN ! https proxy incoming 80 8080 https proxy outgoing host 192.168.135.54 80 ! ! interface FastEthernet 0/0 ip address 192.168.135.34 255.255.255.0 exit interface FastEthernet 0/1 shutdown exit ! ! ip default-gateway 192.168.135.253 ! no auto-register enable ! ip name-server 192.168.135.8 ! no bypass load enable proxy-protocols outgoing-proxy exclude enable proxy-protocols outgoing-proxy exclude list 192.168.136.3 proxy-protocols outgoing-proxy exclude list 172.21.20.13 proxy-protocols outgoing-proxy exclude list 172.17.105.10 ! pre-load enable pre-load depth-level-default 20 pre-load max-bandwidth 5000 pre-load resume pre-load concurrent-requests 30 pre-load traverse-other-domains ! transaction-logs enable transaction-logs archive interval every-week on Sun at 20:00 ! ! username admin password 1 sJLBMWSrOBUMk username admin privilege 15 username sfadmin password 1 0JQLST9jjizL2 uid 2001 username sfadmin privilege 15 username admin1 password 1 Lmye/ITEcdO3o uid 2002 username admin1 privilege 15 ! ! ldap server allow-mode ldap server base "dc=pty,dc=yuden,dc=co,dc=jp" ldap server userid-attribute Administrator ldap server host 192.168.150.8 primary ldap server administrative-dn "CN=administrator,CN=Users,DC=pty,DC=yuden,DC=co,DC=jp" ldap server administrative-passwd **** ldap server enable ! ntlm server host 192.168.135.8 primary ntlm server domain pty.yuden.co.jp authentication login local enable primary authentication configuration local enable primary ! access-lists 300 permit groupname Users access-lists 300 deny groupname any access-lists enable ! ! ! ! ! url-filter http smartfilter enable ! ! ptyproxy#