08-02-2010 07:54 PM - edited 03-10-2019 05:18 PM
Hi all,
I configured LDAP on acs 1120 appliance,but i don't know how to fill parameter on ldap configuration:
Subject ObjectClass
Subject Name Attribute
Certificate Attribute
Group ObjectClass
Group map attribute
Subject search base
Group search base
My domain name is hph.tct.vn
Mapping group on AD server is internetAccess
Help me, please
Thankss
08-03-2010 05:00 AM
Hi Pham,
If you are using Active Directory, I suggest you use the free tool LDP.EXE (Support Tools or Resource Kit) to find more information about your
schema..
Any way, try the following options:
Subject Search Base DC= hph, DC=tct, DC=vn
Group Search Base DC= hph, DC=tct, DC=vn
Subject ObjectClass user
Subject Name Attribute sAMAccountName
Group Objectclass group
Group Map Attribute member
Group Objects Contain References to Subjects distinguished name
Obs. Is better to restrict the ACS where will look for subjects or groups, but you didn't in your message where the users/groups that will be used in ACS are....
My Best Regards,
Andre Lomonaco
08-03-2010 08:41 PM
Hi lomonaco,
The group that will be used in ACS is NguoiDungThue
The group that will be used in Active Directory server is InternetAccess
And i don't know how to mapping 2 groups
Thanks for your help,
Best Regards
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide