1.6 What if I have a large number of users in a third-party server and want to configure client-to-site service?
Configure the users at a server (such as LDAP) to have the fully distinguished name and arrange them in groups.
Figure 1-2 Large number of users
To deploy,
-
Add the TRO of the LDAP server in the trusted root of the VPN server.
-
Add the group entries or user entries for which access is to be allowed.
IMPORTANT:If the full distinguished name of the LDAP entity (user or group) is not provided, the authentication does not succeed.