In this section:

On the SBC main screen, go to All > OAM Ldap Authentication Ldap Server.

Edit LDAP Server

Use the Edit Selected Ldap Server screen to edit the LDAP Server configuration.

Edit Selected LDAP Server Screen

Create LDAP Server

Use the Create New Ldap Server screen to create an LDAP server.

Create New LDAP Server Screen

Copy LDAP Server

Copy an existing LDAP server using the Copy Selected Ldap Server screen.

Copy Selected LDAP Server Screen

View LDAP Server Settings

Use the Ldap Server screen to view LDAP server settings.

LDAP Server List

Re-enable LDAP Server

Use the Ldap Server Commands screen to re-enable the LDAP server.

LDAP Server Commands Screen

Re-enable LDAP Server Parameters

Re-enable Server Parameters

ParameterDescription
Ldap ServerThe name of the LDAP server.
Re Enable Server

An LDAP server is marked "unavailable" when the SBC cannot reach it.

Use this action to re-enable an LDAP server, which then sets the status back to "available". 

LDAP Server Parameters

The following table describes the LDAP Server Parameters. Use the table to edit the LDAP server settings as needed and click Save.

LDAP Server Parameters

Parameter

Length/Range

Description

Mandatory (M)
or Optional (O)

Server NameUp to 23 charactersThe name of the LDAP server.M
Priority1-3The server priority, where '1' is the highest priority.M
StateN/A

The state of this LDAP server.

  • Disabled (default)
  • Enabled
O
Bind MethodN/A

Specify the Bind Method to use.

  • Sasl – Use the Simple Authentication and Security Layer (SASL) option.
  • Simple (default) – Use this option to bind the LDAP clients to the LDAP server with a username and password.
O
Sasl MechanismN/A

The SASL mechanism to use.

  • Plain (default)
O
TransportN/A

The transport type to use.

  • Ldaps
  • TCP (default)
  • TLS
O
BinddnString

The distinguished name to use for the bind operation (only used for simple binds).

In the following example, the SBC replaces the "{0}" with the username when sending requests to the LDAP server.

"cn={0},CN=Users,dc=rbbn,dc=com"

(i.e., "cn=jsmith,CN=Users,dc=rbbn,dc=com")

M, if bind Method = simple
SearchbaseString

This parameter specifies the location where the user records are located, and serves as the base for the LDAP query.

M
Ldap Server AddressIPv4/IPv6 address

The IPv4/IPv6 address of the LDAP server.

M
Ldap Server Port1-65535

The LDAP server port. 

The default value is 389.

NOTE: If transport = Ldaps, specify port 636.

O
Group Name AttributeString

Use this parameter to define the group name attribute.

  • attribute of user record – The attribute in the user record that contains the CLI group name.
  • empty string (default) – leave as an empty string if the groupname is obtained using filters.
O