Solution #00005357
Scope:
Applies to all Barracuda SSL VPNs, all firmware versions.
Answer:
The eDirectory LDAP server uses some different classnames that normally used as standard in LDAP. Therefore, if you need to set up eDirectory on your Barracuda SSL VPN, the settings below have been used previously to successfully configure eDirectory.
Log on as ssladmin and navigate to: Access Control > User Databases and select the LDAP tab to start configuring a new LDAP user database.
Give it a name and enter the eDirectory hostname, baseDN, service Account DN and password. Note that eDirectory baseDNs normally start with o=
For the user schema, enter the following settings:
User class:
inetOrgPerson
Username attribute: cn
Fullname attribute: FullName
Email attribute: mail
Password attribute: userPassword
Password encoding attribute:
Plaintext
Role membership attribute:
groupMembership
Role membership attribute contains DN:
Yes
For the Role Schema, enter the following settings:
Role class: groupOfNames
Rolename attribute: cn
Role membership attribute: member
Role membership attribute contains DN:
Yes
Click Add to create the new database, confirm you can see Users and Groups in the SSL VPN and edit a group or user to ensure that the membership of groups is showing correctly.
Link to this page:
https://campus.barracuda.com/solution/50160000000ILmWAAW