Chapter 7: Administration Features103LDAPThe external LDAP authentication has the following two modes:• Authentication and authorization via LDAP• Only authentication via LDAPNote: For information on enabling or disabling the LDAP authorization,see Adding LDAP Servers(on page 104).Authentication and authorization via LDAP:a. On the LDAP server(s), create both USERS AND USER GROUPS forthe User Station.b. On the User Station, create user groups whose group names are thesame as those on the LDAP server(s). SeeUser Groups (on page 99). You can also import desired user groups from the LDAP serverinto the User Station after performing an LDAP search for usergroup objects. SeeSearching for LDAP Users and Groups (onpage 113). User names for this LDAP authentication mode are NOT neededon the User Station.LDAP alias, which allows one user to have multiple logins, such asmultiple common names, does NOT work in the LDAP authenticationand authorization mode.Only authentication via LDAP:a. On the LDAP server(s), create users for the User Station. User groups are NOT needed on the LDAP server(s).b. On the User Station, create both USERS AND USER GROUPS. Theuser names must be the same as those on the LDAP server(s), butthe user passwords are not stored on the User Station. SeeUsers(on page 95) andUser Groups (on page 99). You can also import desired user names from the LDAP serverinto the User Station after performing an LDAP search for userobjects. SeeSearching for LDAP Users and Groups (on page113).