Unassign Devices from the LDAP Management Console

The administrator who unassigns devices to users via LDAP must own write privileges to the LDAP directory. Assign these privileges using the LDAP management console according to company organization and security policies.

Note: If you use the LDAP to unassign devices, you must update the device assignment status (see View the Device Status Summary). Otherwise, the AAA Server continues to display the device as assigned. This has no impact on AAA Server operations as the status it is informational only.
  1. To unassign an authentication device from your LDAP management console, launch the appropriate administration tool for your LDAP directory.
  2. Select the user.
  3. Delete the device serial number entered in the LDAP field mapped to the AAA Server Device Serial Number attribute.
  4. Save the user’s new settings.