| Screen component | Description | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Directory |
The name of the authentication directory service.
|
||||||||||||
| Directory type |
The type of authentication directory service, OpenLDAP or Active Directory. |
||||||||||||
| Base DN |
The data specifies the starting location that the authentication directory service uses to find users. Enter the domain component or the top of the directory tree so that the user directory can be located: dc=example,dc=com
|
||||||||||||
| User naming attribute (OpenLDAP only) |
Either UID or CN, as needed. |
||||||||||||
| Organizational unit (OpenLDAP only) |
The additional information needed to locate the group in the OpenLDAP structure, starting with the Organizational Unit (OU).
OpenLDAP allows the configuration of multiple user and group OUs. All the OUs in which the user accounts reside must be explicitly configured, but groups are searched in the subtree. For example, consider a configuration in which the user accounts are present under:
and groups are present under:
To explicitly configure different user and group OUs, the OU entries in this screen would resemble the following:
To perform a subtree search for all the groups under
|
||||||||||||
| Add (OpenLDAP only) |
Generates an additional Organizational unit field. |
||||||||||||
| User name and Password |
The credentials of the authentication directory service administrator account that enable the appliance to log in to the directory server and validate the connection.
For Microsoft Active Directory user name login:
If these types of entries do not succeed, the user account is tried in the following order:
|
||||||||||||
| Directory servers |
The name of the server that hosts the authentication directory service. For more information, see Add Directory Server screen. |
![[NOTE: ]](images/note.gif)