How do I configure an LDAP site authentication policy?

Note: Lightweight Directory Access Protocol (LDAP) is an authentication, authorization, and accounting (AAA) protocol. An LDAP AAA server stores and manages public keys. When a user needs to SSH to an NE SR-OS via a public key infrastructure, the SR NE obtains the key from the LDAP AAA server and authenticates the user with that key. An SR NE can only have one policy of this type.

Steps
 

Choose Administration→Security→NE LDAP Authentication from the NFM-P main menu. The NE LDAP Authentication form opens.


Click Create or choose an entry and click Properties. The Site LDAP Policy (Create|Edit) form opens.


Configure the required parameters.


Click on the Servers tab.


Perform the following steps to specify a LDAP server:

  1. Click Create or choose an entry and click Properties. The Site LDAP Server (Create | Edit) form opens.

  2. Configure the required parameters.

    Note:

    Refer to How do I configure NE TLS client authentication? for information regarding creation of NE TLS profiles.

  3. Save your changes and close the form.


Click Apply to save the changes.


Distribute the policy to NEs, as required.


Close the forms.

End of steps