Reference12r1:Services/LDAP/Server: Difference between revisions

From innovaphone wiki
Jump to navigation Jump to search
No edit summary
m Reverted edits by Afi (Talk); changed back to last version by Inno-mst
 
Line 19: Line 19:
|-
|-
|valign=top nowrap=true|'''Apply Hide:'''
|valign=top nowrap=true|'''Apply Hide:'''
| Hideable PBX objects(PBX objects with '''Hide from LDAP''' checked or as '''Critical''' marked objects) will be hidden if the check box is checked.
| Hideable PBX objects(PBX objects with '''Hide from LDAP''' checked) will be hidden if the check box is checked.
|}
|}



Latest revision as of 14:33, 4 May 2020

Here, access data can be configured that allows external LDAP clients read or read and write access to the LDAP database. The server uses the well known LDAP port 389, with TLS the port 636.

VoIP-Telephones require read access to the LDAP database. The default preconfigured username for this purpose is ldap-guest with password ipxxx . For this name the checkmark Apply Hide(s.b.) is automatically activated.

Replication connections require write access.

Off: Completely switches-off the built-in LDAP server. No LDAP-related listening sockets will be active.
User: The LDAP user name.
Password: The relevant LDAP user password.
Write Access: Write authorisation is granted if the check box is checked.
Apply Hide: Hideable PBX objects(PBX objects with Hide from LDAP checked) will be hidden if the check box is checked.

Allowed Networks A list of IP ranges allows to restrict LDAP Access to this server. A range is specified by a tuple: Adress, Mask. To disable LDAP access completely just enter 0.0.0.0 as Address and 255.255.255.255 as Mask. If no range was specified (default) all incoming connections will be accepted.

  • Address: An IP address
  • Mask: An IP address mask
  • Force TLS: Only connections will be accepted with LDAP over TLS (a.k.a. LDAPS)