000020443 - Configuring the LDAP synchronization in RSA ACE/Server 5.1 for Microsoft Active Directory

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 4Show Document
  • View in full screen mode

Article Content

Article Number000020443
Applies ToRSA ACE/Server 5.1 (no longer supported as of 7-14-2006)
Microsoft Active Directory
Microsoft Windows 2000 Advanced Server
IssueConfiguring the LDAP synchronization in RSA ACE/Server 5.1 for Microsoft Active Directory
ResolutionEnsure the LDAP Server Information and LDAP Authentication details are entered correctly in the Edit LDAP Synchronization form.

------------------------------------
LDAP Server Information
------------------------------------
- Ensure your LDAP Host field has the current entry along with the port number of your Microsoft Active Directory Server

- Ensure you know the tree structure of your Microsoft Active Directory Server to provide the correct Base DN e.g. DC=rsasecurity,DC=com

- LDAP Server Type is Active Directory

- Ensure the ACEUTILS/toolkit/active.map file is correctly configured to extract the data you require for importing user information

- LDAP Query Filter is related to the LDAP attributes used in the active.map file. e.g. a typical filter would be 'cn=*'

For more information, see the solution titled How to writeLDAP query filterin RSA ACE/Server for an LDAP Synchronization job.

default active.map file:
 chDefaultLogin=samaccountname
 chLastName=sn
 chFirstName=givenname


------------------------------
LDAP Authentication
------------------------------

- The Binding DN is related to the Microsoft Active Directory Server tree structure configuration e.g. cn=Administrator,cn=Users,DC=rsasecurity,DC=com


----------------
Job Output
----------------

- Page 96 in the RSA ACE/Server 5.1 Administrator's Guide provides details on where the Job Output files are located. Also, please refer to an LDAP Glossary for more information on terms used with directory servers.
Legacy Article IDa16784

Attachments

    Outcomes