Dell PowerEdge MX7000 EMC OpenManage Enterprise-Modular Edition Version 1.20.1 - Page 21

Logging in to OME–Modular using the directory user credentials

Get Dell PowerEdge MX7000 PDF manuals and user guides View all Dell PowerEdge MX7000 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 21 highlights

Use the DNS domain controller lookup type, if you do not know the details of the domain controllers from which you want to import the group or groups. To use the DNS domain controller, ensure that you have done the following tasks on the Network Settings page: ● Selected the Register with DNS check box. ● Provided the Primary and Alternate DNS server addresses. After you enter the domain name, OME-Modular searches the SRV records on the DNS servers to fetch the details of the domain controllers in that domain. If you know the IP address or FQDN of the domain controllers, you can use the Manual domain controller lookup type. 5. Enter the Bind DN and Bind Password. NOTE: Anonymous bind is not supported for AD LDS. 6. Under Advanced Options, enter the Server Port, Base Distinguished Name to Search, Attribute of User Login, Attribute of Group Membership, and Search Filter. By default, LDAP port number of 636 is populated. To change, enter a port number. Enter the User attributes that are configured in the LDAP system, already. It is recommended that the attributes are unique within the selected BaseDN. Else, configure a search filter to ensure that the attributes are unique. If the combination of attribute and search filter cannot identify the user DN uniquely, the login task fails. The Attribute of Group Membership stores information about groups and members in the directory. NOTE: Configure the user attributes in the LDAP system that is used to query before integrating on the directory services. NOTE: Enter the user attributes as cn or sAMAccountName for AD LDS configuration, and UID for LDAP configuration. 7. Select the Network Timeout and Search Timeout durations. The maximum timeout duration supported is 300 seconds. 8. Select the Certificate Validation checkbox if you want to validate the directory service certificate and select the certificate for validation. The certificate must be a Root CA Certificate encoded in Base64 format. The Test Connection option is enabled. 9. Click Test Connection to check the LDAP connection. 10. Enter the bind user credentials of the domain you want to connect to. NOTE: While testing the connection, ensure that the Test username is the Attribute of User Login value entered earlier. 11. Click Test Connection. The Directory Service Information window, indicating a successful connection, is displayed. 12. Click Ok and Finish. A job is created and run to add the requested directory on the Directory Services page. Logging in to OME-Modular using the directory user credentials To log in to OME-Modular using the directory user credentials: From the OME-Modular login page, log in using the AD user credentials. Enter the domain name, if necessary. Importing active directory and LDAP user groups You can import Active Directory (AD) and LDAP groups and map them to the existing OME-Modular groups. NOTE: Users without Administrator rights cannot enable or disable the Active Directory (AD) and LDAP users. To import the groups: 1. On the Users list page, click Import Directory Group. Logging in to OME-Modular 21

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
Use the
DNS
domain controller lookup type, if you do not know the details of the domain controllers from which you want to
import the group or groups. To use the DNS domain controller, ensure that you have done the following tasks on the
Network Settings
page:
Selected the
Register with DNS
check box.
Provided the Primary and Alternate DNS server addresses.
After you enter the domain name, OME-Modular searches the SRV records on the DNS servers to fetch the details of the
domain controllers in that domain.
If you know the IP address or FQDN of the domain controllers, you can use the
Manual
domain controller lookup type.
5.
Enter the
Bind DN
and
Bind Password
.
NOTE:
Anonymous bind is not supported for AD LDS.
6.
Under
Advanced Options
, enter the
Server Port
,
Base Distinguished Name to Search
,
Attribute of User Login
,
Attribute of Group Membership
, and
Search Filter
.
By default, LDAP port number of 636 is populated. To change, enter a port number.
Enter the User attributes that are configured in the LDAP system, already. It is recommended that the attributes are unique
within the selected BaseDN. Else, configure a search filter to ensure that the attributes are unique. If the combination of
attribute and search filter cannot identify the user DN uniquely, the login task fails.
The
Attribute of Group Membership
stores information about groups and members in the directory.
NOTE:
Configure the user attributes in the LDAP system that is used to query before integrating on the directory
services.
NOTE:
Enter the user attributes as
cn
or
sAMAccountName
for AD LDS configuration, and
UID
for LDAP
configuration.
7.
Select the
Network Timeout
and
Search Timeout durations
.
The maximum timeout duration supported is 300 seconds.
8.
Select the
Certificate Validation
checkbox if you want to validate the directory service certificate and select the
certificate for validation.
The certificate must be a Root CA Certificate encoded in Base64 format.
The
Test Connection
option is enabled.
9.
Click
Test Connection
to check the LDAP connection.
10.
Enter the bind user credentials of the domain you want to connect to.
NOTE:
While testing the connection, ensure that the
Test username
is the
Attribute of User Login
value entered
earlier.
11.
Click
Test Connection
.
The
Directory Service Information
window, indicating a successful connection, is displayed.
12.
Click
Ok
and
Finish
.
A job is created and run to add the requested directory on the
Directory Services
page.
Logging in to OME–Modular using the directory user credentials
To log in to OME–Modular using the directory user credentials:
From the OME–Modular login page, log in using the AD user credentials. Enter the domain name, if necessary.
Importing active directory and LDAP user groups
You can import Active Directory (AD) and LDAP groups and map them to the existing OME–Modular groups.
NOTE:
Users without Administrator rights cannot enable or disable the Active Directory (AD) and LDAP users.
To import the groups:
1.
On the
Users
list page, click
Import Directory Group
.
Logging in to OME-Modular
21