User guide
in several forms, optionally including a sub-domain. Valid forms are explained below
by example.
Assume an Active Directory domain name of “sunrise.mycompany.com” with
users in subfolder “sun/myusers.” The User Container field may be entered as:
Example 1 (no sub-domain): “sun.myusers”
Example 2 (no sub-domain): “ou=myusers,ou=sun”
If users are contained in a sub-domain such as
“mktg.sunrise.mycompany.com”, valid forms are:
Example 1 (with sub-domain): “mktg.sunrise.mycompany.com/sun/myusers”
Example 2 (with sub-domain and no container specified):
“mktg.sunrise.mycompany.com/”
Example 3 (with sub-domain): “ou=myusers,ou=sun,dc=mktg,dc=sunrise,
dc=mycompany,dc=com”
c. In the Group Container field, specify the name of the container to search for user
groups. This will limit the search scope to that container. The name may be entered in
several forms, optionally including a sub-domain. Valid forms are explained in step 5b
above.
d. Select Username Type.
e. Specify a Secure Socket Layer (SSL) encryption mode:
• Click Do Not Use SSL to have authentication performed using unencrypted clear
text instead of SSL encryption. This method is the least secure.
• Click Use SSL in Trust All Mode to use SSL encryption for data transmission. All
server certificates will be trusted and automatically accepted by the DSView
software for transmitting data. This SSL method provides medium security.
This encryption mode is not recommended for wide area networks (WANs).
• Click Use SSL in Certificate-based Trust Mode to use SSL encryption for data
transmission. The DSView management software will approve the server and then
the certificate before transmitting data. This SSL method provides maximum
security.
f. Click Use Kerberos for User Authentication to use the Kerberos protocol for
authentication requests, including the browsing. If enabled, you must use DES
encryption types for this account. If an account was created prior to Active Directory,
Chapter 6: Authentication Services 91