LDAP-based User Authentication and Authorization

You can implement a third-party, LDAP server in your network for authenticating and authorizing the device's management users (Web and CLI). This can be done by using an LDAP-compliant server such as Microsoft Active Directory (AD). When a user attempts to log in to one of the management platforms, the device verifies the login username and password with AD. The device can also determine the user's management access level (privileges) based on the user's profile in the AD. This is configured in the LDAP pages located under Setup menu > IP Network tab > AAA Servers folder.

An alternative to using an LDAP server is to use a RADIUS server, as discussed in the next section.