aaa:LdapProvider

An LDAP provider, which is a remote server supporting the LDAP protocol that will be used for authentication.

Telemetry Sensor Path(s)

Configurable Properties
PROPERTY NAME DATA TYPE DESCRIPTION PERMITTED VALUES
SSLValidationLevel aaa:LdapSSLStrictnessLevel
(scalar:Enum8)
The LDAP Server SSL Certificate validation level. SELECTION:
0 - strict
1 - permissive
DEFAULT: strict
attribute aaa:LdapAttribute
(string:Basic)
The attribute to be downloaded that contains user role and domain information. If specified, this property takes precedence over the value of the LDAP attribute specified in the default LDAP parameters pane (Admin -> AAA -> Ldap Management).
MAX SIZE: 63
DEFAULT:
basedn aaa:LdapDn
(string:Basic)
LDAP Base DN
MAX SIZE: 127
DEFAULT:
descr pol:Descr
Description of the specified attribute
disableReferral scalar:Bool
LDAP Server Disable Referrals SELECTION: true or false
DEFAULT: no
enableSSL scalar:Bool
A property for enabling an SSL connection with the LDAP provider. SELECTION: true or false
DEFAULT: no
filter aaa:LdapFilter
(string:Basic)
The LDAP filter to be used in a user search.
MAX SIZE: 127
key aaa:EncKey
(string:Basic)
A password for the AAA provider database.
MAX SIZE: 240
keyEnc aaa:KeyEnc
(scalar:Enum8)
Default key encryption SELECTION:
0 - 0
6 - 6
7 - 7
DEFAULT: inherit-from-global
monitoringIdleTime aaa:IdleTimer
(scalar:Uint16)
Idle timer to monitor ldap server
RANGE: [0 , 1440]
DEFAULT: 0
monitoringPassword aaa:MonitoringPasswordType
(aaa:EncKey)
Periodic Server Monitoring Password
RANGE: [1 , 32]
DEFAULT: wawy
monitoringPasswordType aaa:LdapPwdEnc
(scalar:Enum8)
Monitoring password encryption type SELECTION:
0 - 0
7 - 7
DEFAULT: 7
monitoringRootdn aaa:LdapDn
(string:Basic)
Root DN
MAX SIZE: 127
DEFAULT: dc=test,dc=com
monitoringUser aaa:MonitoringUserType
(string:Basic)
Periodic Server Monitoring Username
MAX SIZE: 31
DEFAULT: test
name pol:ObjName
(naming:Name256)
Object name
MAX SIZE: 64
ownerKey naming:Descr
(string:Basic)
The key for enabling clients to own their data for entity correlation.
MAX SIZE: 128
ownerTag naming:Descr1024
(string:Basic)
A tag for enabling clients to add their own data. For example, to indicate who created this object.
MAX SIZE: 64
port aaa:Port
(scalar:Uint32)
The service port number for the LDAP service.
RANGE: [1 , 65535]
DEFAULT: 389
pwdEncryptType aaa:LdapPwdEnc
(scalar:Enum8)
Password Encryption Type SELECTION:
0 - 0
7 - 7
DEFAULT: 0
retries aaa:Retries
(scalar:Uint32)
RANGE: [0 , 5]
DEFAULT: inherit-from-global
rootdn aaa:LdapDn
(string:Basic)
The root DN or bind DN of the LDAP provider.
MAX SIZE: 127
DEFAULT:
rootdnPwd aaa:EncKey
(string:Basic)
Root DN Password
MAX SIZE: 64
DEFAULT:
timeout aaa:TimeSec
(scalar:Uint32)
The amount of time between authentication attempts.
RANGE: [0 , 60]
DEFAULT: 0

Internal Properties
PROPERTY NAME DATA TYPE DESCRIPTION POSSIBLE VALUES
epgDn reference:BinRef
Management EpG dn
keySet scalar:Bool
Key Set SELECTION: true or false
modTs mo:TStamp
(scalar:Date)
The time when this object was last modified. SELECTION:
0 - never
DEFAULT: never
operState aaa:ProviderState
(scalar:Enum8)
The current state of the provider. SELECTION:
0 - unknown
1 - operable
2 - inoperable
DEFAULT: unknown
snmpIndex aaa:ProviderSnmpIndex
(scalar:Uint32)
RANGE: [0, 4294967295]
status mo:ModificationStatus
(scalar:Bitmask32)
The upgrade status. This property is for internal use only. SELECTION:
2 - created
4 - modified
8 - deleted
16 - replaced
vrfName l3:VrfName
(string:Basic)
The vrf that this client group belongs to A sequence of characters