Removing the mapping of an Active Directory to a device role

The following example removes the mapping between the Extreme admin role and the Active Directory (AD) Administrator group. A user with the admin role can no longer perform the operations associated with the AD Administrator group.

To unmap an AD group to a device role, perform the following steps.

  1. In privileged EXEC mode, use the configure terminal command to enter global configuration mode. 
    device# configure terminal
Entering configuration mode terminal
  2. Use the no ldap-server maprole command to set the group information. 
    device(config)# no ldap-server maprole group Administrator
9036684-01 Rev AA