Cisco Systems OL-15986-01 Security Camera User Manual

Open as PDF

of 134

5-9

Cisco NAC Guest Server Installation and Configuration Guide

OL-15986-01

Chapter 5 Configuring User Group Permissions

Mapping to LDAP Groups

1. Storing the group membership in an attribute of the user object. With this method the user object

has one or more attributes that list the groups that the user is a member of. If your LDAP server

uses this method of storing group membership then you need to enter the name of the attribute

which holds the groups the user is a member of.

2. Storing the user membership in an attribute of the group object. With this method there is a

group object that contains a list of the users who are members of the group. If your LDAP server

uses this method then you need to specify the group to check under the LDAP mapping section

of a User Group you want to match the user to.

When you define the LDAP server you will have specified one of these options.

If the LDAP server supports the first option then you will have to specify to check the user attribute for

a certain string.

If the LDAP server supports the second option then you will need to enter the full DN of the group you

want to check membership of. The Cisco NAC Guest Server will then look in the attribute to make sure

that it contains the name of the user who has logged in.

Step 1 Select LDAP Mapping from the top menu when in the add user group or edit user group screen

(

Figure 5-9).

Figure 5-9 LDAP Group Mapping

Step 2 If your LDAP server uses user attributes to store group membership then enter the group name to check

is either contained or equals the specified string.

Step 3 If your LDAP server stores group membership in the group object then specify the full DN of the group

you want to check and the name of the attribute that will be checked for the sponsors username.

Step 4 Click the Assign Attributes button to save the LDAP group mapping.

Note You can specify both options for the same group. The option that you check depends on the setting on

the LDAP server with which the sponsor successfully authenticates.

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems OL-15986-01 Security Camera User Manual