ldap server ldap
 login-dn cn=administrator,cn=users,dc=h3c,dc=local
 search-base-dn dc=h3c,dc=local
 group-filter user
 ip x.x.x.x
 login-password simple <abc>
 user-parameters user-name-attribute samaccountname
#
ldap attribute-map ldapmap
 map ldap-attribute memberof prefix cn= delimiter , aaa-attribute user-group
#
ldap scheme ldap
 authentication-server ldap
 authorization-server ldap
 attribute-map ldapmap
#
domain h3c.local
 authorization-attribute idle-cut 540 10240
 authentication portal ldap-scheme ldap
 authorization portal none
 accounting portal non
#
 portal user log enable
 portal free-rule 1 destination ip any udp 53
 portal free-rule 2 destination ip any tcp 53
#
portal web-server newpt
 url http://x.x.x.x/portal
#
portal local-web-server http
 default-logon-page defaultfile.zip
#
 netconf soap http enable
 netconf ssh server enable

#
interface Vlan-interface99
 ip address 192.168.99.1 255.255.255.0
 portal enable method direct
 portal domain h3c.local
 portal apply web-server newpt
#
user-identity user-import-policy test
 ldap-scheme ldap