This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC!
We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
Hi All,
While configuring LDAP , I got struck in “Step 3 - Directory Organization”. Could anyone tell me how to make this work?
My aim is to make users authenticated from their windows domain usernames and passwords while they login to AAA clients.
Hi,
This configuration could be fine if you use Active Directory
Subject Objectclass: Person
Subject Name Attribute: sAMAccountName (if you want to use username as login@domain : use UserPrincipalName)
Group Objectclass: Group
Group Map Attribute: memberOf
Subject Objects Contain Reference To Groups (if you want to check authorization with LDAP groups)
Subject Search Base: Your base DN (DC=CISCO, DC=COM for example)
Group Search Base: Your base DN (DC=CISCO, DC=COM for example)
Other fields are optionals.
HTH,
Patrick