ldap-server maprole

Maps an Active Directory (AD) group to a device role.

Syntax

ldap-server maprole group group_name role role_name
no ldap-server maprole group group_name

Parameters

group group_name
The name of the AD group.
role role_name
The name of the device role.

Modes

Global configuration mode

Usage Guidelines

Enter no ldap-server maprolegroup group_name without the role role_name parameter to remove the mapping of the AD group to a role.

Examples

To map the AD group "Administrator" to the device role "admin": 

device(config)# ldap-server maprole group Administrator role admin

To remove the mapping: 

device(config)# no ldap-server maprole group Administrator
9036689-01 Rev AA