Score:0

ldap connection with switch HP 5700 flexFabric

ni flag

Can I restrict ssh login access to my HP Switch 5700, 5800 series using active directory groups?

ldap is working fine when the search-base-dn is using an OrganisationUnit.

search-base-dn OU=privilegedUser,OU=User,DC=company,DC=com

Using a global group with typ security is not working.

search-base-dn CN=switch-admins,OU=groups,OU=User,DC=company,DC=com

Syntax:

system-view
ldap server domain_name
search-base-dn OU=privilegedUser,OU=User,DC=company,DC=com

Syntax 2:

I also tried to accomplish the filtering with:

system-view
ldap server domain_name
search-base-dn OU=privilegedUser,OU=User,DC=company,DC=com

user-parameters user-object-class (memberOf=CN=switch-admins,OU=groups,OU=User,DC=company,DC=com)
th flag
You can also use group memebership to search, ismemeberof or memeberof attribute
Medera avatar
ni flag
@HamzaTahiri I tried to filter with "user-parameters user-object-class" see new second example. But was not yet successful.
mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.