Want to configure LDAP to work with Apple Mac OS X Open Directory Service.
How to configure LDAP to work with Apple Mac OS X Open Directory Service.
This article will provides the basic steps to configure ProxySG to use Apple Mac OS X Open Directory as LDAP server.
Before Beginning
* must have an Apple Mac OS X Open Directory Server configured.
* must have the BaseDN & UserDN.
Step 1.
- Go to Configuration tab > Authentication > LDAP > LDAP Realms tab >
- Click New >
- Realm name: <Example AppleLDAP>
- Type of LDAP server: Select <Netscape/Sun iPlanet>
- Primary server host: xxx.xxx.xxx.xxx Port:389 (default)
- User attribute type: Leave the default <uid>
- Click OK
Step 2.
- Go to Configuration tab > Authentication > LDAP > LDAP DN tab >
- Click New >
- Input > dc=sunnyvale,dc=bluecoat,dc=com (This will need to be changed to suit your particular environment)
- Click OK
Step 3.
- Go to Configuration tab > Authentication > LDAP > LDAP Search & Groups tab >
Here there are 2 options: either allow Anonymous search which allows a user to perform LDAP search without entering a distinguished name, or configure authenticated searches, which requires a search user DN and password to function properly.
3a. Check Anonymous search allowed - this option usually works depending on if Apple Mac OS X Open Directory Server has been configured to allow anonyomous searches
If 3a doesn't work, then attempt
3b. Uncheck Anonymous search allowed >
- Search user DN: cd=users,uid=admin,dc=sunnyvale,dc=bluecoat,dc=com (Again this will need to be modified to suit your environment)
- Click Change Password button and input admin or root password.
Finally, click Apply which will save the configured settings.