The pki ldap command configures a device to use LDAP to download a CA certificate, local certificate, or CRL.
pki ldap ip ip-address port port version version [ attribute attr-value ] [ authentication ldap-dn ldap-password ] save-name dn dn-value
| Parameter | Description | Value |
|---|---|---|
| ip-address | Specifies the IP address of an LDAP server. | The value is in dotted decimal notation. |
| port port | Specifies the port number of an LDAP server. | The value is an integer that ranges from 1 to 65535. The default value is 389. |
| version version | Specifies the version number of LDAP. | The value is an integer that ranges from 2 to 3. The default value is 3. |
| attribute attr-value | Specifies the attribute used by a device to request a certificate from an LDAP server. | The value is a string of 1 to 64 case-sensitive characters without question marks and spaces. |
| authentication ldap-dn ldap-password | Specifies the user name and password authenticated by the LDAP server. | ldap-dn: The value is a string of 1 to 64 case-sensitive characters without question marks and spaces. ldap-password: The value is a string of 1 to 32 case-sensitive characters without question marks and spaces. |
| save-name | Specifies the name of a CA certificate, local certificate, or CRL saved on the CFcard or Hda1 of the device. | The value is a string of 1 to 64 case-insensitive characters without question marks and spaces. |
| dn dn-value | Specifies the DN used by a device to request a certificate from an LDAP server. | The value is a string of 1 to 128 case-sensitive characters, with spaces supported. |