Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Anchor
Top
Top

Table of Contents
maxLevel3
indent20px

OpenLDAP

1. To install OpenLDAP Server

OpenLDAP Server is free available from:
http://www.openldap.org/software/download/
1.1 Double click the OpenLDAP application to start the installation:
For example: openldap-2.2.29-db-4.3.29-openssl-0.9.8a-win32_Setup.exe
Image Modified
Image Modified
1.2 Click "Browse" to locate the installation path(for example: c:\OpenLDAP), and then click "Next".
Image Modified
1.3 Select "Full installation" as below and click "Next" to continue.
Image Modified
1.4 Click "Next/Install" as Default setting.
Image Modified
Image Modified
Image Modified
1.5 Click "Finish" to complete the OpenLDAP installation.
Image Modified

2. To configure the LDAP Server

2.1 Add the schema commands.
Open the slap.conf file under the installation path. And find the command :./schema/core.schema, and then add the following commands: include

include             ./schema/cosine.schema

...

include             ./schema/inetorgperson.schema

...

include             ./schema/corba.schema

...

include             ./schema/dyngroup.schema

...

include             ./schema/java.schema

...

include             ./schema/misc.schema

...

include             ./schema/nis.schema

...

include             ./schema/openldap.schema


Image Modified
2.2 Edit the manager information:
Find the following commands in slap.conf: suffix "dc

suffix           “dc=my-domain, dc=

...

com”

rootdn        “cn=manager,dc=mg-domain,dc=

...

com”

...

rootpw       secret

suffix defines the components of the domain name.
rootdn is the manager access to the LDAP server.
rootpw means the password of the manager.
For example, you can change the context as following:

suffix

...

“dc=HanLong,dc=

...

com”

rootdn

...

“cn=manager,dc=HanLong,dc=

...

com”

rootpw secret

...

3. To Run Slapd Server

3.1 Click Start→ Run→ input cmd→Enter.
3.2 Perform the cd command to locate the server installation path.
For example: input cd c:\OpenLDAP(c:\OpenLDAP)
Image Modified
3.3 Enter the slapd -d -1 command to start the slapd server.
Image Modified
When showing "slapd starting", it means the slapd server runs successfully.
Image Modified

Note: Keep the window open to ensure the server is running.

4. To add initial Entry to the LDAP Directory

4.1 Create .ldif file under the located path.
For example: create a file test.ldif under c:\OpenLDAP.
Input the following context in the .ldif file and save.

dn:dc=HanLong,dc= com
objectclass:dcobject
objectclass:organization
o:xmHanLong
dc:HanLong


dn:cn=manager,dc=HanLong,dc= com
dc=HanLong
objectclass:dcobject
objectclass:organization
cn=manager
sn:summer


Image Modified
4.2 To make the Entry effective.
4.2.1 Click start→run→Enter cmd→Enter
4.2.2 Input cd c:\OpenLDAP
4.2.3 Input ldapadd –x –D "cn=manager,dc=HanLong,dc=com" –w secret –f test.ldif
Image Modified

5. To Install LDAP Client

LDAPExploreTool2 is free on web http://ldaptool.sourceforge.net/.
5.1 Double click LDAPExploreTool2.exe, and then click "Next".
Image Modified
Image Modified
5.2 Select the installation and then click "Next" as default setting.
Image Modified
Image Modified
Image Modified
Image Modified
5.3 Click "Finish" to finish the installation.
Image Modified

6. To Configure LDAP Client

6.1 Run LDAPExploreTool2.
Double click LDAPExploreTool Icon on the table.
Image Modified
6.2 To Create a Configuration.
6.2.1 Click File→Configuration→New, to add a new configuration.
Image Modified
Image Modified
6.2.2 Fill the Configuration name, for example: LDAP.
Image Modified
6.2.3 Fill the Server Name or IP under Server table, for example: 192.168.0.90. Leave the Server port and Server SSL port as default.
Image Modified
6.2.4 Under the Connection table, fill the User DN and Password.
The context filled on User DN is same as "rootdn" in .ldif file.
For example:
User ID: cn=manager,dc=HanLong,dc=com
Password: secret
Click the "Guess value" to get the base DN and then click "Test connection" to test the connection status.
Image Modified
6.2.5 Click "Ok" to finish the configuration.

...

7.1 Open the created configuration.
7.1.1 Click File→Configuration→select the created configuration.
For example: LDAP
Image Modified
7.1.2 Click "Open" to open the configuration.
7.2 To Add the new entry creation.
7.2.1 Right click the root entry and click the "Add" button to add new entries.
Image Modified
Image Modified
7.2.2 Fill the "Entry RDN" follow the format: cn=xxx, for example: cn=Alyssa.
7.2.3 Select the "Object Class", for example: person.
7.2.4 Double click the sn in the "MUST attributes", and then right click sn to fill the value: For example Cheng.
Image Modified
7.2.5 Double click cn in the "MUST attributes", and then right click cn to add the cn value(the value is same as "Entry RDN", here for example is Alyssa).
Image Modified
7.2.6 Double click "Object Class".
7.2.7 Double click the telephoneNumber in "May attributes", and then right click to add the value.
7.2.8 Click "Save" to save this Entry.
7.2.9 Repeat Step 7.2.1—7.2.8 to add more Entries.

Note:
1. sn means surname. cn means common name
2. "MUST attributes" must be selects, and "MAY attributes" is optional.

8. To configure LDAP on Htek IP Phones

8.1 Login webpage and configure LDAP features.
Click Directory→LDAP
LDAP Name Filter: This parameter specifies the name attributes for LDAP searching. The "%" symbol in the filter stands for the entering string used as the prefix of the filter condition.
For example (cn=%), when the name prefix of the cn of the contact record matches the search criteria, the record will be displayed on the IP PHONE LCD.
LDAP Number Filter: This parameter specifies the number attributes for LDAP searching.
Server Address: Fill the domain name or IP address of the LDAP Server.
For example: 192.168.0.124
Port: Fill the port of the LDAP Server, for example: 389 as default.
Base: Fill the same value as suffix value mentioned before.(On page 6 )
For example: dc=HanLong,dc=com
User Name: Fill the same value as rootdn mentioned before.(On page 6 )
For example: cn=manager,dc=HanLong,dc=com
Password: Fill the same value as the rootpw mentioned before. (On page 6 )
For example: secret
Max.Hits: Fill the maximum number of the search results to be returned by the LDAP server.
LDAP Name Attributes: Fill the LDAP Name Filter, separated by a space between two values. If you set this attribute, the LDAP Server will send the name attribute to SIP Server, for example: cn
LDAP Number Attributes: Fill the LDAP Number Filter, separated by a space between two values. If you set this attribute, the LDAP Server will send the number attribute to SIP Server, for example: telephoneNumber
LDAP Display Name: Fill the display name of the contact record displayed on the LCD screen, separated by a space between two values, for example: %cn %sn
Filled the relative value and then click "SaveSet" button to save the settings.
Following is the example screenshot for the configuration.
Image Removed
Image Removed
8.2 To Configure LDAP Key.
8.2.1 To configure LDAP Key via Web:

  • Click Function Key→Line Key→ choose Line Key 4(for example).
  • Select LDAP in the Type field.
  • Click "SaveSet" to save the configuration.
    Image Removed

8.2.2 To Configure LDAP Key via LCD:

  • Press Menu→Feature→Function Keys→Memory Keys as Function Keys→Memory Key 1.
  • Select LDAP in the Type field.
  • Press "Save" or "OK" key to save the configuration.

9. To use LDAP on Htek IP Phones

Press the LDAP Key.
Image Removed

Active Directory

1. To install the Microsoft Active Directory Domain Services

...

Active Directory

1. To install the Microsoft Active Directory Domain Services

Note: This section shows you how to install an active directory on Microsoft Windows Server 2008 or Microsoft Windows Server 2008 R2 Enterprise 64-bit system.
1.1 Click Start→Run.
1.2 Enter dcpromo in the pop-up dialogue box and click "ENTER".
1.3 The Active Directory Domain Services Installation Wizard will appear after a short while, click "Next":
Image Modified
1.4 Popup hint window, click "ok".
1.5 Read the provided information and click "Next":
Image Modified
1.6 Mark the "Create a new domain in a new forest" radio box and click "Next".
Note: We recommend that you set a strong password for the local Administrator account before you create the new domain.
Image Modified
1.7 Enter an appropriate domain name for the forest root domain and click "Next":
Image Modified
The wizard will check if the domain name is in use on the local network:
Image Modified
1.8 Select the desired forest functional level from the pull-down list of "Forest functional level", and click "Next".
For more information, click "domain and forest functional levels":
Image Modified
1.9 Select the desired domain functional level from the pull-down list of "Domain functional level", and click "Next".
For more information, click "domain and forest functional levels".
Image Modified
1.10 Select additional options for this domain controller if required, and click "Next".
Image Modified
1.11 The wizard will prompt a warning about DNS delegation. Since no DNS has been configured yet, you can ignore the message and click "Yes".
Image Modified
1.12 Specify the desired paths for the database, log files and SYSVOL folders, and click "Next".
For more information, click "placing Active Directory Domain Services files".
Image Modified
1.13 Configure the password for the active directory recovery mode, and click "Next".
For more information, click "Directory Services Restore Mode password".
The password should be complex and at least 7 characters long.
Image Modified
1.14 Review your selection and click "Next".
Image Modified
The wizard will prompt that the system begins to create the Active Directory Domain Services.
Image Modified
1.15 Click "Finish" to complete and exit the wizard:
Image Modified

2. To Install the Active Directory Lightweight Directory Services Role

You should also install the Active Directory Lightweight Directory Services role on Windows Server 2008 system.
2.1 Click Start->Administrative Tools->Server Manager.
2.2 Right click "Roles", and then select "Add Roles".
2.3 The Add Roles Wizard will pop up, click "Next".
Image Modified
2.4 Check the "Active Directory Lightweight Directory Services" checkbox and click "Next".
Image Modified
2.5 Follow the default settings and click "Next".
2.6 When the installation is completed, click "Close".
Image Modified
After the installation succeeds, you will find the "Active Directory Lightweight Directory Services" role listed in roles of the server manager.
Image Modified

3. Configuring the Microsoft Active Directory Server

To add an entry to the Active Directory:
3.1 Click Start->Administrative Tools->Server Manager.
3.2 Double click Roles->Active Directory Domain Services->Active Directory Users and Computers.
3.3 Double click the domain name created above (e.g., ldap.htek.com), and then select Users->New->Contact.
Image Modified
3.4 Enter the desired name of the Contact.
Image Modified
3.5 Click "OK" to accept the change, you can see the added contact in the Users field.
Image Removed

...


Image Added

Using LDAP on Htek IP Phones

1. Configuring Htek IP Phones

LDAP is disabled on IP Phones by default. You can configure LDAP via web interface or using configuration files. The feature is supported version 1.0.3.82 or later.
To configure LDAP feature via web user interface:
4.1 Press the "OK" key on the phone when it is idle to obtain the IP address.
4.2 Enter the IP address (e.g., http://192.168.0.100 or 192.168.0.100) in the address bar of web browser on your PC and then press Enter.
4.3 Enter the user name and password in the login page.
The default login user name is admin (case-sensitive) and the password is admin (case-sensitive).
4.4 Click on Directory->LDAP.
4.5 Enter the desired values in the corresponding fields.
The screenshot for reference is shown as below: Image Removed
Image Removed

...

4.6 Click "SaveSet" to accept the change.

...

2. LDAP Attributes on Web Interface

LDAP Name Filter: This parameter specifies the name attributes for LDAP searching. The "%" symbol in the filter stands for the entering string used as the prefix of the filter condition.
For example (cn=%), when the name prefix of the cn of the contact record matches the search criteria, the record will be displayed on the IP PHONE LCD.
LDAP Number Filter: This parameter specifies the number attributes for LDAP searching.
Server Address: Fill the domain name or IP address of the LDAP Server.
For example: 192.168.0.191 9
Port: Fill the port of the LDAP Server, for example: 389 as default.
Base: Fill the same value as suffix value mentioned before.
For example: dc=HanLong,dc=com
User Name: Fill the same value as rootdn mentioned before.
For example: cn=manager,dc=HanLong,dc=com
Password: Fill the same value as the rootpw mentioned before.
For example: secret
Max.Hits: the maximum number of the search results to be returned by the LDAP server.
LDAP Name Attributes: Fill the LDAP Name Filter, separated by a space between two values. If you set this attribute, the LDAP Server will send the name attribute to SIP Server, for example: cn
LDAP Number Attributes: Fill the LDAP Number Filter, separated by a space between two values. If you set this attribute, the LDAP Server will send the number attribute to SIP Server, for example: telephoneNumber
LDAP Display Name: Fill the display name of the contact record displayed on the LCD screen, separated by a space between two values, for example: %cn %sn
Filled the relative value and then click "SaveSet" button to save the settings.
Following is the example screenshot for the configuration. each value is preceded by % , with no space separation required, for example: %cn%sn

Example for Configuration

LDAP Name Filter

:

(|(cn=%)(givenName=%)(

sn

departmentNumber=%))

LDAP Number Filter

:

(|(telephoneNumber=%)(Mobile=%)

(ipPhone=%))

)

LDAP TLS Mode

LDAP

Server Address

:

192.168.0.

191

9

Port

:

389

Base

: dc=ldap,dc=htek,dc=comUsername: cn=Administrator,cn=Users,dc=ldap

dc=htek,dc=local

User Name

cn=ldapadmin,dc=htek,dc=

com

local

Password

: secretMax Hits (1~32000): 32000

123456

LDAP Name Attributes

:

cn sn givenName departmentNumber

LDAP Number Attributes

: Mobile

telephoneNumber

ipPhone

mobile

LDAP Display Name

: %cn

%cn%departmentNumber

Protocol

: Version 2

LDAP Lookup For Incoming Call: off

LDAP Sorting Results: off

...

V3

3. To Use LDAP feature

To configure an LDAP key via web user interface:
6.1 Log into the web interface of the phone.
6.2 Click on Function Keys->Memory Key (or Line Key).
6.3 In the desired memory key (or line key) field, select LDAP from the pull-down list of "Type".
Image Modified
6.4 Click "SaveSet" to accept the change.
6.5 Press the LDAP key on the phone when it is idle. The LDAP contacts will display on the LCD:
Image Modified
6.6 You can search contacts by entering character in the Filter Prefix field.

...