aaa:LdapProvider
An LDAP provider, which is a remote server supporting the LDAP protocol that will be used for authentication.
Telemetry Sensor Path(s)
Configurable Properties
| PROPERTY NAME | DATA TYPE | DESCRIPTION | PERMITTED VALUES |
|---|---|---|---|
| SSLValidationLevel | aaa:LdapSSLStrictnessLevel (scalar:Enum8) |
The LDAP Server SSL Certificate validation level. | SELECTION: 0 - strict 1 - permissive DEFAULT: strict |
| attribute | aaa:LdapAttribute (string:Basic) |
The attribute to be downloaded that contains user role and domain information. If specified, this property takes precedence over the value of the LDAP attribute specified in the default LDAP parameters pane (Admin -> AAA -> Ldap Management). | MAX SIZE: 63 DEFAULT: |
| basedn | aaa:LdapDn (string:Basic) |
LDAP Base DN | MAX SIZE: 127 DEFAULT: |
| descr | pol:Descr |
Description of the specified attribute | |
| disableReferral | scalar:Bool |
LDAP Server Disable Referrals | SELECTION: true or false DEFAULT: no |
| enableSSL | scalar:Bool |
A property for enabling an SSL connection with the LDAP provider. | SELECTION: true or false DEFAULT: no |
| filter | aaa:LdapFilter (string:Basic) |
The LDAP filter to be used in a user search. | MAX SIZE: 63 |
| key | aaa:EncKey (string:Basic) |
A password for the AAA provider database. | MAX SIZE: 240 |
| keyEnc | aaa:KeyEnc (scalar:Enum8) |
Default key encryption | SELECTION: 0 - 0 6 - 6 7 - 7 DEFAULT: inherit-from-global |
| monitoringIdleTime | aaa:IdleTimer (scalar:Uint16) |
Idle timer to monitor ldap server | RANGE: [0 , 1440] DEFAULT: 0 |
| monitoringPassword | aaa:MonitoringPasswordType (aaa:EncKey) |
Periodic Server Monitoring Password | RANGE: [1 , 32] DEFAULT: wawy |
| monitoringPasswordType | aaa:LdapPwdEnc (scalar:Enum8) |
Monitoring password encryption type | SELECTION: 0 - 0 7 - 7 DEFAULT: 7 |
| monitoringRootdn | aaa:LdapDn (string:Basic) |
Root DN | MAX SIZE: 127 DEFAULT: dc=test,dc=com |
| monitoringUser | aaa:MonitoringUserType (string:Basic) |
Periodic Server Monitoring Username | MAX SIZE: 31 DEFAULT: test |
| name | pol:ObjName (naming:Name256) |
Object name | MAX SIZE: 64 |
| ownerKey | naming:Descr (string:Basic) |
The key for enabling clients to own their data for entity correlation. | MAX SIZE: 128 |
| ownerTag | naming:Descr1024 (string:Basic) |
A tag for enabling clients to add their own data. For example, to indicate who created this object. | MAX SIZE: 64 |
| port | aaa:Port (scalar:Uint32) |
The service port number for the LDAP service. | RANGE: [1 , 65535] DEFAULT: 389 |
| pwdEncryptType | aaa:LdapPwdEnc (scalar:Enum8) |
Password Encryption Type | SELECTION: 0 - 0 7 - 7 DEFAULT: 0 |
| retries | aaa:Retries (scalar:Uint32) |
RANGE: [0 , 5] DEFAULT: inherit-from-global |
|
| rootdn | aaa:LdapDn (string:Basic) |
The root DN or bind DN of the LDAP provider. | MAX SIZE: 127 DEFAULT: |
| rootdnPwd | aaa:EncKey (string:Basic) |
Root DN Password | MAX SIZE: 64 DEFAULT: |
| timeout | aaa:TimeSec (scalar:Uint32) |
The amount of time between authentication attempts. | RANGE: [0 , 60] DEFAULT: 0 |
Internal Properties
| PROPERTY NAME | DATA TYPE | DESCRIPTION | POSSIBLE VALUES |
|---|---|---|---|
| epgDn | reference:BinRef |
Management EpG dn | |
| keySet | scalar:Bool |
Key Set | SELECTION: true or false |
| modTs | mo:TStamp (scalar:Date) |
The time when this object was last modified. | SELECTION: 0 - never DEFAULT: never |
| operState | aaa:ProviderState (scalar:Enum8) |
The current state of the provider. | SELECTION: 0 - unknown 1 - operable 2 - inoperable DEFAULT: unknown |
| snmpIndex | aaa:ProviderSnmpIndex (scalar:Uint32) |
RANGE: [0, 4294967295] | |
| status | mo:ModificationStatus (scalar:Bitmask32) |
The upgrade status. This property is for internal use only. | SELECTION: 2 - created 4 - modified 8 - deleted 16 - replaced |
| vrfName | l3:VrfName (string:Basic) |
The vrf that this client group belongs to | A sequence of characters |