LDAP and tnsnames

Hi all

can someone please explain the differences between LDAP and tnsnames?

and the LDAP configuration for the oracle database.

>

can someone please explain the differences between LDAP and tnsnames?

and the LDAP configuration for the oracle database.

check the link below.

http://docs.Oracle.com/CD/B10500_01/network.920/a96580/config_c.htm

Tags: Database

Similar Questions

  • Double authentication using LDAP and RSA

    I would use LDAP and RSA (double authentication) for my SSL VPN clients.  Can I authenticated users if my logon page requires users to enter a second username.  If I have the configuration so that they have to enter their username once, no authentication attempt is passed on to the authentication servers.  I'm under debug on LDAP and RADIUS (for RSA), which is what I know that authentication is never over if they are to enter their user name once on the login page.

    If I don't specify "use-primary-username" at the end of the 'secondary-authentication-server-group' command, users must enter their username twice and the authentication is successful.

    Does anyone know how to configure the ASA so that they have to enter their username once while using the LDAP (as principal) and RSA (RADIUS) (secondary)?

    Thanks in advance.

    Matt

    Hi Matt,

    I just tried on 8.3 (2) and it works as expected. I suspect that you are running in this bug:

    CSCte66568    Double authentication broken in 8.2.2 during use-primary-username is CONF.

    If you are running 8.2, upgrade to 8.2 (3) and you shoud be fine.

    HTH

    Herbert

  • UCS LDAP and Native authentication

    Hello

    We put the Native authentication for LDAP and UCS Manager connection to LDAP as well. We are able to connect to GUI & SSH using the LDAP account. But can not connect on the GUI using the local account (admin).

    If I change the Native authentication at the local level, we can connect to GUI via local account (admin), but can not connect to SSH via LDAP account.

    Missing something?

    Please let me know.

    / Rags

    Hello

    When you have changed the native auth to LDAP and use local account, are you prefixing the local username with the local domain auth?

    * From Linux / MAC machine

    SSH ucs -------@.

    SSH-l ucs -.

    SSH -l ucs -.

    * From client PuTTY

    Connect as: ucs -.

    NOTE the domain name is case-sensitive and must match the name field set up in UCSM.

    Try connecting with the name in domainsername and let us know the result.

    Padma

  • After changing the port (1521 to 1525 in listener.ora and tnsnames.ora) OEM: the database is down

    Hello

    I'm installing Oracle Database 11 g 2 (11.2.0.4) on Oracle Linux 7.1.

    In short, what I'm trying to do now is changing the default port of 1521 to 1525.

    So I stopped the listener (lsnrctl stop) and then changed my listener.ora and tnsnames.ora:

    Listener.ora

    listener.ora # Network Configuration file: /u01/app/oracle/product/11.2.0/dbhome_1/network/admin/listener.ora

    # Generated by Oracle configuration tools.

    LISTENER =

    (DESCRIPTION_LIST =

    (DESCRIPTION =

    (ADDRESS = (PROTOCOL = CIP)(KEY = EXTPROC1521))

    )

    (DESCRIPTION =

    (ADDRESS = (PROTOCOL = TCP (PORT = 1525))(HOST = localhost))

    )

    )

    ADR_BASE_LISTENER = / u01/app/oracle

    tnsnames.ora

    tnsnames.ora # Network Configuration file: /u01/app/oracle/product/11.2.0/dbhome_1/network/admin/tnsnames.ora

    # Generated by Oracle configuration tools.

    BI =

    (DESCRIPTION =

    (ADDRESS_LIST =

    (ADDRESS = (PROTOCOL = TCP (PORT = 1525))(HOST = localhost))

    )

    (CONNECT_DATA =

    (SERVER = DEDICATED)

    (SERVICE_NAME = bi)

    )

    )

    And then changed the local_listener:

    SQL > ALTER SYSTEM SET LOCAL_LISTENER = "(ADDRESS = (PROTOCOL = TCP)(HOST=localhost) (PORT = 1525))";

    SQL > ALTER the REGISTRY SYSTEM;

    Finally, I started the listener (lsnrctl start) again.

    Then I tried to connect using Oracle SQL Developer to the customer. The port of 1525 works perfectly well.

    The problem is, when I open the OEM (Oracle Enterprise Manager), it says: "the database is down. Please specify the credentials of the host to access the restart and database diagnostic tools," which is like this: http://imgur.com/oKLPW65

    So I logged on the account of the host, and it shows that the database instance, listener and the agent is all down like this: http://imgur.com/Bzr84bz

    It seems that the port used by the OEM is always 1521.

    What should I do? Can someone help me solve the problem?

    Thanks in advance.

    UPDATE:

    After changing the emoms.properties & the targets.xml (thanks to Elisabeth), you will need to reconfigure dbconsole using emca.

    So what I'm doing is decreasing the config:

    $ emca - deconfig dbcontrol db-rest drop

    and then create again:

    $ emca - create config dbcontrol db-rest

    Voila.

    Best regards

    Jerry Antonius

    Hello

    Try to change the port numbers in the following files

    Don't port no 1521 to 1525

    $ORACLE_HOME /_SID/sysman/config/emoms.properties

    oracle.sysman.eml.mntr.emdRepPort = 1525 (before 1521)

    $ORACLE_HOME /_SID/sysman/emd/targets.xml

    (Before 1521)

    (Before 1521)

  • ldap and AAU card

    How we map info ldap (roles and groups) with groups and roles of the ucm? do we have to create the same roles and account in ucm as in ldap (read somewhere in the documentation). so, it becomes a manual activity.

    is there an auto sync-up happening between ldap and ucm data?

    Hello Mohan,

    Not necessary that you need to create the same set of roles at the Complutense University of MADRID. You can use the identification cards and map the ldap groups to the roles of the Complutense University of Madrid.

    For example:

    LDAP, you have defined groups that are the same as contributor (on ucm). Create an identification card, and then use the ldap to the Contributor group card.

    Check this forum for many messages on identification cards and how to use it.

    I hope this helps.

    Thank you

    Srinath

  • LDAP and OCI8 doesnot work together

    Hello

    I installed 11.2 oracle instant client. When I try to compile with LDAP and oci8 together

    This is the configuration for the compilation

    . / configure.
    -prefix = / usr/local/apache.
    -with ldap.
    -with-mysql = / usr/local/mysql \
    -with-pdo-mysql = / usr/local/mysql \
    -with-unixODBC = / usr.
    enable-sigchild------.
    -with-mssql = / usr/local.
    -enable-inline-optimization.
    -with-layout = GNU.
    enable-bcmath.
    --with-oci8=instantclient,/usr/lib/Oracle/11.2/client/lib.------
    --with-PDO-OCI=/usr/lib/Oracle/11.2/client/.------
    -with openssl.
    enable-gd-native-ttf.
    -with-freetype-dir = / usr.
    enable-pcntl.
    -with zlib.
    -bindir = / local/bin.
    -with mcrypt = / usr/local/lib.
    enable-mbstring.
    enable-ctype.
    enable-soap.
    -with-jpeg-dir = / usr/lib.
    -with-png-dir = / usr/lib.
    -= / usr/local/apache/bin/apxs with-apxs2filter------.
    -with-curl.
    -with-gd \
    -with snmp






    it throw error

    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:68:1: warning: 'LBER_CLASS_UNIVERSAL' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:52:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:69:1: warning: 'LBER_CLASS_APPLICATION' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:53:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:70:1: warning: 'LBER_CLASS_CONTEXT' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:54:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:71:1: warning: 'LBER_CLASS_PRIVATE' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:55:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:72:1: warning: 'LBER_CLASS_MASK' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:56:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:75:1: warning: 'LBER_PRIMITIVE' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:59:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:76:1: warning: 'LBER_CONSTRUCTED' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:60:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:77:1: warning: 'LBER_ENCODING_MASK' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:61:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:79:1: warning: 'LBER_BIG_TAG_MASK' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:63:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:80:1: warning: 'LBER_MORE_TAG_MASK' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:64:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:88:1: warning: 'LBER_ERROR' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:74:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:89:1: warning: 'LBER_DEFAULT' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:75:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:92:1: warning: 'LBER_BOOLEAN' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:78:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:93:1: warning: 'LBER_INTEGER' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:79:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:94:1: warning: 'LBER_BITSTRING' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:80:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:95:1: warning: 'LBER_OCTETSTRING' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:81:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:96:1: warning: 'LBER_NULL' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:82:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:97:1: warning: 'LBER_ENUMERATED' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:83:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:98:1: warning: 'LBER_SEQUENCE' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:84:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:99:1: warning: 'LBER_SET' redefined
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:27,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/lber.h:85:1: warning: this is the location of the previous definition
    In file included from root/download/php-5.3.5/ext/ldap/php_ldap.h:30,
    from /root/download/php-5.3.5/ext/ldap/ldap.c:45:
    /usr/include/Oracle/11.2/client/LDAP.h:183: error: redefinition of 'struct berval.
    make: * [ext/ldap/ldap.lo] error 1



    Note:

    his work fine with LDAP or without BEC 8

    The LDAP extension could do with a bit of love update for recent versions of Oracle.
    See https://bugs.php.net/bug.php?id=61450
    See the patch that I suggested in https://github.com/php/php-src/pull/19

    The real solution is to build initially without OCI8 PHP and then add later OCI8 as a shared extension.
    This last step is easiest using PECL: pear install oci8. You can then add "extension = oci8.so" in your php.ini.

    Other independent advice, are:
    -Use the latest version of PHP 5.3 (or even start looking for PHP 5.4)
    -Do not use--enable-sigchild.  See https://blogs.oracle.com/opal/entry/php_oci8_signal_handling_and_e_1
    -Do not activate PDO_OCI

    Why the world suddenly had an obsession about LDAP and OCI8 in the last few weeks? It's for a class?

  • SQLNET.ora and tnsnames.ora, listener.ora btwn difference

    Hi all

    What is the fundamental difference between these 3 files - sqlnet.ora, listener.ora and tnsnames.ora?

    Version may be 10 g.

    (a) Listener.ora is a SQL * Net configuration file allows you to Configure listeners (needed to accept applications for remote connection) Oracle database.

    Normally, this file resides in the ORACLE HOME\NETWORK\ADMIN directory or in the directory defined by the variable $TNS_ADMIN.

    (b) Tnsnames.ora is a file that is used by oracle client to connect to the oracle server.

    (c) Sqlnet.ora is a text file that provides SQL * Net with the basic configuration details as options vectorization, field by default, encryption, etc.. This file is located in the ORACLE HOME\NETWORK\ADMIN directory.

  • Attribute mapping between ldap and ecm11g internal user profile user

    Hi all

    I use ucm11g, is there a way to map between ldap and ecm11g internal user profile user attributes? I tested with an attribute named homephone wls embeded LDAP, create the attribute homephone in ecm11g the user after login profile, I can't find the value in the ecm11g user profile.

    Best regards

    In earlier versions, there was LDAPProvider which was replaced by JpsUserProvider to 11g. This component allows you to do a bit in the interface, but there are a few more options which do not seem to be documented. For example, if you have a HomePhone field and enter 123456789 inside and then empty, by default, the JpsUserProvider component will not empty field the Complutense University of MADRID. You can change this by entering ClearMissingAttributes = true in the provider.hda file. Or if you want to use the credentials, you will need to change provider.hda with ProviderCredentialsMap = name_of_map (my source for the latter was the ECM blog at http://blogs.oracle.com/ecmarch/2011/03/).

    For more information on JpsUserProvider, look in the Administrator's Guide:

    When to add JPS provider: http://download.oracle.com/docs/cd/E14571_01/doc.1111/e10792/c02_settings007.htm#CSMSP496

    Adding a JPS Provider: http://download.oracle.com/docs/cd/E14571_01/doc.1111/e10792/c02_settings007.htm#BEIIAHHI

    I hope this helps!

    Frank.

  • LDAP and APEX for access from home

    I am new to LDAP and only familiar with concepts so bear with me. I would like to know if I can use LDAP with an APEX application so that employees can access the LAN/intranet working system as well from home (or anywhere on the internet). They have access to the intranet via the LAN by signing on the use of their Novell username and password. I'm assuming that they can connect to the House using the same Novell username and password. (BTW-I don't want to set up APEX user ID or database user ID for users of 1800-1900). This can be accomplished? If so, how?

    I have a meeting with the vice-principal of the week next to discuss this project which it can manage access from the internet.


    Thank you in advance.

    Robert
    http://apexjscss.blogspot.com

    Hi Robert,.

    Yes, he is indifferent to the APEX where a user comes from. As I mentioned above, authentication is performed in the database by data that shows through the front. As long as the front-end server reaches the end back, your users can connect.
    The onlyl restriction that can be there is the Novell (LDAP) server not accepting does not request to the database server. But if you have LDAP works on your APEX for a LAN/WAN access, he will work with the reverse proxy as well.

    -Udo

  • is it possible to use two external LDAP and authentication of external Table?

    Hi, is it possible to use both external LDAP and authentication of the external table?

    they all need two initialization blocks to access a session system variable, USER?

    Thank you

    Hello
    I don't think it's possible to impliment the LDAP authentication both extenal together. The reasons are,
    1. we cannot define two sources (LDAP and Extenal DB) in the same blocks of justine initialization user information.
    2. If two different (one for LDAP) initialization blocks and one for extenal DB are used, we cannot use variable USER twice it's a defined system variable.

    Thank you
    Swami

  • LDAP and shared services are not running

    Hi all

    MY SSP and ldap does not work how do I retrieve the ldap and shared services with the recofigure, assumed that u can suggest me a method to start the ldap and shared services without having to reconfigure it

    Concerning
    Shenna

    If you use version 9.3 and then go into 'C:\Hyperion\SharedServices\9.3.1\openLDAP '.
    Open ldap, you will find a folder named bdb, go inside the dbd file, you will find a bin folder

    'C:\Hyperion\SharedServices\9.3.1\openLDAP\bdb\bin '.
    You will find an option called "db_recover.exe".
    Click db_recover.exe, and then restart the ldap and shared services

    It should work

    Please keep posted if it does not work

    Concerning
    Sreekumar.H

  • What IP SLA probe for LDAP and Radius

    Hello

    I would use IP SLA probes to monitor client access to broadband.

    We want to deploy some routers of shadow on some Exchange sites to measure the customer experience.

    We are looking to create a DNS probe. We would like to test authentication.

    I think running the port of probe UDP 1812 for RADIUS.

    I don't know if that's enough.

    What is LDAP?

    Anyone would have done a similar implementation?

    Thank you

    Rgds

    Abdel

    There is no specific operations to test the Radius and LDAP. There is nothing you can do as the udpEcho operation will not work with the port of RADIUS for the RADIUS. You must configure the collector to send requests to the UDP echo (port 7) port or equipment of machine IP SLA (see http://www.cisco.com/en/US/docs/ios/ipsla/configuration/guide/sla_udp_echo_ps6441_TSD_Products_Configuration_Guide_Chapter.html ).

    However, for LDAP, you can configure a collector of generic TCP connection which will at least give you data connection latency. The collector must connect to tcp/389 (assuming the plaintext LDAP) or tcp/636 for ldaps.

  • ISE 802.1 x, LDAP and OSX 10.8.2

    We are in the slow process of establishing ISE to 802. 1 x for all our users. Our Windows are working very well so far with the AD, but or the Mac guys use their own LDAP server. I have properly configured the LDAP in ISE and I am able to authenticate on the server with switches LDAP (PAP) and Linux (EAP - GTC). Currently, I can't get the OSX computers use PEAP/EAP to authenticate their LDAP. They can to ISE authenicate using the internal database. According to literature ISE EAP - GTC is virtually the only option for LDAP using some kind of security if you use user names and passwords. Unfortuntatly, we don't have direct access to our CA issueing organizations each computer trust cert is a bit challenging.

    Someone has some tips to set up OSX computers use ISE against LDAP? I can't find documentation on the side of Apple that shows EAP - GTC is supported, and we perfer to stay away from PAP clear text for security reasons.

    Thank you.

    Michael,

    Your only option is to use eap - tls, PEAP mschapv2 is a hash-based protocol that is not supported in the ldap Protocol. You must join ISE AD and can not even use AD a LDAP DB because mschapv2 will not work.

    Hope this link helps:

    http://www.Cisco.com/en/us/docs/security/ISE/1.1.1/user_guide/ise_man_id_stores.html

    Thank you

    Tarik Admani
    * Please note the useful messages *.

  • DAP using LDAP and attributes of Cisco

    I would like to be able to implement a strategy of dynamic access to the criteria that all the following conditions:

    Cisco.GroupPolicy = Sales

    ldap.memberOf = Remote_Access

    can have a specific set of access. My connection profile uses a Radius Server to authenticate and assign group policy.

    Is it possible to do this? Since then, it doesn't seem to work for me.

    Hi Luis,.

    If you want to use LDAP attributes in your strategy of DAP, you will need to use LDAP for authentication or authorization in your tunnel-group.

    Thus you will be either have to replace ray with ldap for authentication, OR keep radius for authentication and add ldap for authorization on top.

    HTH

    Herbert

  • Modrdn IOM ldap and connector operations.

    Hello

    I wonder if it is possible to change the behavior of the connector ldap IOM to avoid modrdn operation when, for example, moving users from one container into another container.

    Thank you and best regards,

    German.

    Hello

    If I understand correctly, you want change OR update task OR task does not get triggered?

    If so, its possible. You just need to remove the entry from the search for relaxation on ACT_KEY.

    ~ J

Maybe you are looking for