Support User Manuals

Cisco Systems 5.2.x Home Theater Server User Manual

Open as PDF

of 350

6-16

User Guide for Cisco Digital Media Manager 5.2.x

OL-15762-03

Chapter 6 Authentication and Federated Identity

Concepts

Use “memberOf” values to pinpoint a filter more precisely

• But what if you did not want to include any members of Milpitas or Sunnyvale? If your

Active Directory server considered these cities (organizational units) to be subsets of San José, how

could you exclude their members? To do so, you would use the

memberOf

attribute. It stops LDAP from matching records at any lower level than the one you name explicitly.

In this scenario for example, you would use

memberOf=OU=SanJose,DC=example,DC=com

to match only the direct members of the “SanJose” OU.

Use “objectClass” values to match all user records

• You can define a comprehensive filter that matches all user records.

objectClass=user

Password Concepts

Note NEW IN CISCO DMS 5.2.3—User passwords in Cisco DMS are no longer case-sensitive.

• Understand the Effects of a Changed Password in Active Directory, page 6-16

• Understand the Effects of a Blank Password in Active Directory, page 6-16

Understand the Effects of a Changed Password in Active Directory

After you change a user password on your Active Directory server, there is no requirement to

resynchronize the affected user account in DMS-Admin.

Understand the Effects of a Blank Password in Active Directory

• Even though it is possible in Active Directory to use a blank value for a password, Cisco DMS does

not allow it.

• When you choose LDAP authentication, any user whose Active Directory password is blank is

prevented from logging in to any component of Cisco DMS.

• Access is enabled or restored after the password is populated on the Active Directory server.

Understand Authentication Property Sheets for LDAP

The Authentication page contains four tabbed property sheets.

Select

Mode

1

Embedded, LDAP, or (NEW IN CISCO DMS 5.2.3) SSO

Select Mode is by default the only active tab. Your choices on the Select Mode property sheet

determine whether you have access to the other three property sheets.

Define

Filter

LDAP or (NEW IN CISCO DMS 5.2.3) SSO

Your choices on the Define Filter property sheet help you to configure and add a new agreement.

previous next