Pearl-2 User Guide
Configure LDAP user authentication
Connection
encryption
Description/Default port used
No Encryption
No encryption is used to connect to the LDAP server. The default port is 389.
SSL
SSL encryption is used to connect to the LDAP server. The default port is 636.
TLS/STARTTLS
The connection is initially unencrypted then upgraded to TLS encryption is
used. The default port is 389.
6. In the
Bind DN
and
Bind password
fields, specify the fully qualified DN and password for LDAP bind.
These fields are only needed if your LDAP server does not support anonymous binding.
7. In the
Base DN
field, specify the baseObject to search for entries. The system will search this object
and the whole subtree starting at the base DN.
8. (Optional) By default the search attribute is
uid
, which is suitable for a unix environment. You can
specify a different value in the
Search attribute
field, if needed. For Active Directory environments,
specify
userPrincipalName
. The value of this attribute must be unique in the Base DN.
9. In the
Administrators (group DN)
field, specify the distinguished name of the group users must be
part of to be logged in as the administrator. Users must have the
member
or
unqueMember
attribute
for the specified group to be granted Administrator access.
If left blank, LDAP is not supported for Administrators (but can still be used for Operators and Viewers).
10. In the
Operators (group DN)
field, specify the distinguished name of the group users must be part of
to be logged in as the operator. Users must have the
member
or
unqueMember
attribute for the
specified group to be granted Operator access.
If left blank, LDAP is not supported for Operators (but can still be used for Administrators and Viewers).
11. In the
Viewers (group DN)
field, specify the distinguished name of the group users must be part of to
be logged in as a viewer. Users must have the
member
or
unqueMember
attribute for the specified
group to be granted Viewer access.
If left blank, LDAP is not supported for Viewers (but can still be used for Administrators and Operators).
12. Click
Apply
.
When a user of the LDAP server next visits the admin or viewer page for the system, the system prompts for
use the username and password. For ActiveDirectory servers, the user needs to enter his fully qualified
username (i.e. username@domainname) in addition to his LDAP password.
Users are required to authenticate once to the system and one time per channel they view.
Therefore users see a prompt to log in to the system (the system name is shown) and a second
time to log in to the channel (the channel name is shown).
196
Содержание Pearl-2
Страница 137: ...Pearl 2 User Guide Disable the network discovery port 123 ...
Страница 157: ...Pearl 2 User Guide Mute audio 143 ...
Страница 178: ...Pearl 2 User Guide 4K feature add on 164 ...
Страница 434: ...Pearl 2 User Guide Delete a recorder 3 Click Delete this recorder and click OK when prompted 420 ...
Страница 545: ...Pearl 2 User Guide Register your device 531 ...
Страница 583: ... and 2021 Epiphan Systems Inc ...