Configure Ericsson LDAP Filter
Contents
1 Description
This instruction describes how to use the standard Ericsson profile filter. Such a change can be triggered by the organization security policy.
2 Procedure
Prerequisites
- This instruction references the following documents:
- No tools are required.
- The following conditions must apply:
- The user has the System Security Administrator role.
- The Managed Element (ME) is configured to connect with remote LDAP server, refer to Configure LDAP Basic Connection and Configure TLS for LDAP.
- The LDAP server is configured for the ME.
- The Ericsson LDAP schema is specified and loaded in the LDAP server and the user POSIX® accounts are updated to use the schema.
- An Ericsson Command-Line Interface (ECLI) session in Exec mode is in progress.
Steps
- Navigate to the Ldap managed object, for example:
>dn ManagedElement=NODE06ST,SystemFunctions=1,SecM=1,UserManagement=1,LdapAuthenticationMethod=1,Ldap=1
- Enter Config mode:
(Ldap=1)>configure
- Set the profileFilter:
(config-Ldap=1)>profileFilter=ERICSSON_FILTER
- Commit the settings:
(config-Ldap=1)>commit
- Verify the result:
(Ldap=1)>show
The following is an example output:
Ldap=1 baseDn="dc=my-domain,dc=com" fallbackLdapIpAddress="192.168.0.11" ldapIpAddress="192.168.0.10" profileFilter=ERICSSON_FILTER useTls=false