Want to configure LDAP to work with Apple Mac OS X Open Directory Service.
How to configure LDAP to work with Apple Mac OS X Open Directory Service.

This article will provides the basic steps to configure ProxySG to use Apple Mac OS X Open Directory as LDAP server.

Before Beginning

* must have an Apple Mac OS X Open Directory Server configured.
* must have the BaseDN & UserDN.

Step 1.

- Go to Configuration tab > Authentication > LDAP > LDAP Realms tab >
   - Click New >
   - Realm name: <Example AppleLDAP>
   - Type of LDAP server: Select <Netscape/Sun iPlanet>
   - Primary server host: xxx.xxx.xxx.xxx Port:389 (default)
   - User attribute type: Leave the default <uid>
   - Click OK

Step 2.

- Go to Configuration tab > Authentication > LDAP > LDAP DN tab >
   - Click New > 
   - Input > dc=sunnyvale,dc=bluecoat,dc=com (This will need to be changed to suit your particular environment)
   - Click OK

Step 3.

- Go to Configuration tab > Authentication > LDAP > LDAP Search & Groups tab >

Here there are 2 options: either allow Anonymous search which allows a user to perform LDAP search without entering a distinguished name, or configure authenticated searches, which requires a search user DN and password to function properly.

3a. Check Anonymous search allowed - this option usually works depending on if Apple Mac OS X Open Directory Server has been configured to allow anonyomous searches

If 3a doesn't work, then attempt

3b. Uncheck Anonymous search allowed >
       - Search user DN: cd=users,uid=admin,dc=sunnyvale,dc=bluecoat,dc=com (Again this will need to be modified to suit your environment)
       - Click Change Password button and input admin or root password.

Finally, click Apply which will save the configured settings.