Re: [OSL | CCIE_Security] LDAP clarification

Thu, 15 Apr 2010 07:47:02 -0700 

Kingsley,

 

This document really helps in knowing what values you will need.  Of course
it is for ASA but the concepts are the same.

 

http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/extsv
r.html

 

Regards,

 

Tyson Scott - CCIE #13513 R&S, Security, and SP

Technical Instructor - IPexpert, Inc.

Mailto: [email protected]

Telephone: +1.810.326.1444, ext. 208

Live Assistance, Please visit: www.ipexpert.com/chat

eFax: +1.810.454.0130

 

IPexpert is a premier provider of Self-Study Workbooks, Video on Demand,
Audio Tools, Online Hardware Rental and Classroom Training for the Cisco
CCIE (R&S, Voice, Security & Service Provider) certification(s) with
training locations throughout the United States, Europe, South Asia and
Australia. Be sure to visit our online communities at
www.ipexpert.com/communities and our public website at www.ipexpert.com
<http://www.ipexpert.com/> 

 

From: [email protected]
[mailto:[email protected]] On Behalf Of Kingsley
Charles
Sent: Thursday, April 15, 2010 8:13 AM
To: [email protected]
Subject: [OSL | CCIE_Security] LDAP clarification

 

Hi all

 

Vol 2 > Lab 15 > Sec 5.3

 

I am not getting the exact picture of LDAP. I am aware of that LDAP
originated from the telephony services that used X.500 

DAP directories. It is actually an hierarchy.

 

But when I relate it to Windows LDAP, I get confused.

 

 

If you go to ACS > External Database and try to configure a LDAP, the
following parameters are required to be entered. 

Can someone exaplain, these parameters.

  

User Directory Subtree   
Group Directory Subtree   
UserObjectType   
UserObjectClass   
GroupObjectType   
GroupObjectClass   
Group Attribute Name   
Hostname   
Port  Default is 389 
LDAP Version Use LDAP V3         
Admin DN   
Password   

 

 

dn is disinguished name, cn is common name, dc is component.

 

"User Directory Subtree" is the container in which the user account is
present.

"Group Directory Subtree" is the container in which group the user is
present.

 

 

In the Vol 2 > Lav 16 > Sec 5.3, I see some parameters for LDAP. 

 

Can someone please explain, the important parameters that we need to
understand with respect to CCIE.

 

 

 

With regards

Kings


_______________________________________________
For more information regarding industry leading CCIE Lab training, please visit 
www.ipexpert.com

Reply via email to