137
Chapter 9
LDAP Server Configuration
Introduction
The CN8000 allows log in authentication and authorization through external
programs. This chapter describes how to configure Active Directory and
OpenLDAP for CN8000 authentication and authorization.
To allow authentication and authorization for the CN8000 via LDAP or
LDAPS, the Active Directory’s LDAP Schema must be extended so that an
extended attribute name for the CN8000 – permission – is added as an optional
attribute to the person class.
Note: Authentication refers to determining the authenticity of the person
logging in; authorization refers to assigning permission to use the
device’s various functions.
In order to configure the LDAP server, you will have to complete the following
procedures: 1) Install the Windows Server Support Tools; 2) Install the Active
Directory Schema Snap-in; and 3) Extend and Update the Active Directory
Schema.
The following section provides an example of configuring LDAP under
Windows 2003 Server.
Install the Windows 2003 Support Tools
To install the Windows 2003 Support Tools, do the following:
1. On your Windows Server CD, open the Support
→ Tools folder.
2. In the right panel of the dialog box that comes up, double click
SupTools.msi.
3. Follow along with the Installation Wizard to complete the procedure.