cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1826
Views
0
Helpful
1
Replies

ACS 5.2 integration with LDAP for user authentication.

Hi All,

While configuring LDAP , I got struck in  “Step 3 - Directory Organization”. Could anyone tell me how to make this work?
My aim is to make users authenticated from their windows domain usernames and passwords while they login to AAA clients.

1 Reply 1

Patrick Tran
Level 1
Level 1

Hi,

This configuration could be fine if you use Active Directory

Subject Objectclass: Person

Subject Name Attribute: sAMAccountName (if you want to use username as login@domain : use UserPrincipalName)

Group Objectclass: Group

Group Map Attribute: memberOf

Subject Objects Contain Reference To Groups (if you want to check authorization with LDAP groups)

Subject Search Base: Your base DN (DC=CISCO, DC=COM for example)

Group Search Base: Your base DN (DC=CISCO, DC=COM for example)

Other fields are optionals.

HTH,

Patrick

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: