No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


Fat AP and Cloud AP V200R010C00 Command Reference

Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
ad-server authentication

ad-server authentication


The ad-server authentication command configures an AD authentication server.

The undo ad-server authentication command deletes the configured authentication server.

By default, no AD authentication server is configured.


ad-server authentication ip-address [ port ] [ secondary | third ] [ ldap-over-ssl ]

ad-server authentication server-url url [ port ] [ ldap-over-ssl ]

undo ad-server authentication [ secondary | third | server-url ]


Parameter Description Value
ip-address Specifies the IP address of the server. The value is in dotted decimal notation.
port Specifies the port number of the server. The value is an integer that ranges from 1 to 65535. The default value is 88. The port number configured using this command must be the same as that configured on the AD server.
secondary Indicates the backup server. -
third Indicates the tertiary AD server. -
server-url url Specifies the server URL. The value is a string of 1 to 127 characters. The URL must contain '.', For example:
ldap-over-ssl This parameter must be specified when the LDAP authentication between the device and AD server uses LDAP over SSL. The device uses a CA certificate to authenticate the AD server. -


AD server template view

Default Level

3: Management level

Usage Guidelines

Make sure that a DNS server is configured before you use the URL method to configure the server. The device assigns the first three IP addresses resolved to the primary, secondary, and tertiary servers.

During AD authentication, LDAP is used in interaction between the device and AD server. The LDAP data transmission is not encrypted. For security, you can use LDAP based on SSL for encrypted transmission. AD server certificates need to be imported into the device to authenticate the AD server.

If you run this command for many times, new configurations overwrite previous configurations.

If a user attempts to connect to the server for authentication while the server configurations are being modified at the same time, the system will display an operation failure.


# Set the IP address of the AD server to and port number to 88.

<Huawei> system-view
[Huawei] ad-server template temp1
[Huawei-ad-temp1] ad-server authentication 88
Updated: 2019-11-21

Document ID: EDOC1100064352

Views: 203673

Downloads: 122

Average rating:
This Document Applies to these Products
Related Version
Related Documents
Previous Next