Cisco 4700M Configuration Manual page 107

Chapter 2 Configuring Authentication and Accounting Services
Setting the Global LDAP Server Port Setting
OL-16202-01
Configuring the ACE as a Client of a RADIUS, TACACS+, or LDAP Server
password bind_password—(Optional) Defines the bind password (rootpw)
•
applied to the rootDN of the LDAP server directory. Enter an unquoted string
that has a maximum of 63 alphanumeric characters. The default is an empty
string.
For example, to configure LDAP server authentication parameters, enter:
host1/Admin(config)# ldap-server host 192.168.2.3 port 2003
host1/Admin(config)# ldap-server host 192.168.2.3 timeout 60
host1/Admin(config)# ldap-server host 192.168.2.3 rootDN
"cn=manager,dc=cisco,dc=com" password lab
To remove the LDAP server authentication setting, enter:
host1/Admin(config)# no ldap-server host 192.168.2.3
By default, the TCP destination port for communicating authentication requests
to the LDAP directory server is 389. If your LDAP server uses a port other than
port 389, use the ldap-server port command to globally configure the ACE for
the appropriate port before you start the LDAP service. This global port setting
will be applied to those LDAP servers for which a TCP port value is not
individually configured by the ldap-server host command.
The syntax of this command is as follows:
ldap-server port port_number
The port_number argument is the destination port to the LDAP server. Valid
values are from 1 to 65535. The default is TCP port 389.
For example, to globally configure the TCP port, enter:
host1/Admin(config)# ldap-server port 2003
To revert to the default of TCP port 389, enter:
host1/Admin(config)# no ldap-server port 2003
Cisco 4700 Series Application Control Engine Appliance Security Configuration Guide
2-37