LDAP and FortiOS
a, setup a ldap server 171 which has been installed FSSO as well.
b, create a new user user1 (fullname: user1 ldap) which is under Users but not working with fortios. administrator works.
c, create a new OU qa and create account qa1. it is still not working with fos.
d, figure out: default container Users for windows 2003 is CN. created folder qa is OU. so the dn will be different for them. use CN to test instead of account name.
config user ldap
edit "171users"
set server "x.x.x.171"
set cnid "cn"
set dn "CN=Users,DC=jk2003pc171,DC=com"
set type regular
set username "cn=administrator,cn=users,dc=jk2003pc171,dc=com"
set password xxxxxx
next
edit "171qa"
set server "x.x.x.171"
set cnid "cn"
set dn "OU=qa,DC=jk2003pc171,DC=com"
set type regular
set username "cn=administrator,cn=users,dc=jk2003pc171,dc=com"
set password xxxxxxx
next
end
==============
Test:
d test authserver ldap 171qa "zxxx kxxx" Qxxxxxx!
authenticate 'zxxx kxxx' against '171qa' succeeded!
d test authserver ldap 171users administrator qyyyyyyy
authenticate 'administrator' against '171users' succeeded!
Thursday, June 9, 2011
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment