ldap settings
This command configures various LDAP settings.
Syntax
(config-system)# ldap settings (ldap)#
|
Command |
Description |
|---|---|
|
auth-filter |
Defines the filter (string) to search the user during the authentication process. |
|
cache {clear-all|refresh-entry} |
Configures LDAP cache actions. |
|
enable-mgmt-login {off|on} |
Enables the device to use LDAP for authenticating management interface access. |
|
entry-removal-timeout |
Defines the duration (in hours) after which an entry is removed from the LDAP cache. |
|
entry-timeout |
Defines the duration (minutes) an entry in the LDAP cache is valid. |
|
ldap-cache-enable {off|on} |
Enables the LDAP cache. |
|
ldap-numeric-attr |
Defines up to five LDAP Attributes (separated by commas) for which the device uses for LDAP query searches in the AD for numbers that may have characters between the digits. |
|
ldap-search-server-method {parallel|sequentialy} |
Defines the search method in the LDAP servers if more than one LDAP server is configured. |
|
ldap-service {off|on} |
Enables the LDAP service. |
|
search-dns-in-parallel {parallel|sequentialy} |
Configures whether DNs should be checked in parallel or sequentially when there is more than one search DN. |
Command Mode
Privileged User
Example
This example enables the LDAP cache and sets the valid duration of a cached entry to 1200 minutes.
(config-system)# ldap settings (ldap)# ldap-cache-enable on (ldap)# entry-timeout 1200