ldap-server (System)
Syntax
ldap-server { address { base base domain binddn node proxyacc username bindpw node proxyaccount password ldaps-cert client certificate name port number; routing-instance routing-instance-name; }
Hierarchy Level
[edit system]
Description
Configure an LDAPS server for LDAPS authentication and authorization for Junos OS user login. LDAP support for users trying to log in is extended with TLS security between the device running Junos OS (LDAPS client) and the LDAPS server.
Options
address | Address of the LDAP authentication server. |
base base domain | Distinguished name of the search base. |
binddn node proxyacc username | Distinguished name of the proxy account of the LDAPS client to bind to the server with. |
bindpw node proxyaccount password | Credentials of the LDAPS client to bind with. |
ldaps-cert client certificate name | The client certificate for LDAPS client
to establish an LDAP over TLS (LDAPS) connection. The certificate-name is the name that is added using |
routing-instance routing-instance-name | The name of the routing instance. If you're configuring the nondefault management instance, use the value mgmt_junos. |
port number | Port number on which to contact the LDAP server. |
Default: None
Required Privilege Level
system—To view this statement in the configuration.
system-control—To add this statement to the configuration.
Release Information
Statement introduced in Junos OS Release 20.2R1.