LCOS SX supports Microsoft Active Directory (MS AD) user authentication for management interfaces. MS AD provides an Lightweight Directory Access Protocol (LDAP) interface through which authentication is performed.
LDAP is defined in RFC 4511 and is a standard application protocol for accessing and maintaining distributed directory information services over the network. It is typically used to store information such as organizations, individuals, and other resources such as files and devices in a hierarchical manner. Microsoft Windows domain users and devices can be authenticated by looking up such information by using the LDAP protocol.
In LCOS SX, authentication into the Windows domain network is done via an LDAP simple bind operation and optionally over TLS. Authorization is done based on the memberOf attribute or the description attribute carrying a Cisco VSA cisco- av-pair) configured on MS AD.
