Manualshelf

User guide

ManualsBrandsAvocent ManualsComputer equipmentEquinox Console Manager CCM4850 CCM4850 CCM4850
111112113114115116117118119120
Enable Use Windows 2003 Universal Group Caching if you wish to have the AD
service access the domain controller for the specified domain name. The search
includes the "TokenGroups" attribute of the ObjectClass=user. This search is faster but
only retrieves the nested groups SIDs; subsequent calls must be made to find the group
name and specific SIDs. The Windows 2003 Universal Group Caching feature must be
enabled in the Windows 2003 AD server.
13. Click Allow use of Users/Groups from Trusted Forests to allow logins by users belonging
to a forest that are assigned to groups in a different forest. If enabled, the DSView will
query all trusted forests in the Active Directory service to find the user and user groups to
which the authenticated user belongs.
If you deselect Allow use of Users/Groups from Trusted Forests, any previously
discovered trusted forests will be hidden from the User Authentication Services
window and users belonging to trusted forests will not be permitted to log in.
14. Click Save to save your changes.
If you selected Use SSL in Certificate-based Trust Mode, the Certificates heading will
appear in the side navigation bar. Go to step 15.
If you selected Do Not Use SSL or Use SSL in Trust All Mode, go to step 16.
15. Click Certificates. The Authentication Service Certificate Management - AD window
opens and list all servers in that domain. A status of Trusted indicates the certificate is
trusted, based on the certificate policy (see System certificate policy and trust store on
page 52); Untrusted indicates the certificate cannot be trusted.
16. To register certificates:
a. To select one or more certificates, click the checkbox to the left of the server IP
addresses. To select all certificates on the page, click the checkbox to the left of the IP
Address heading.
b. Click Register above the IP Address list to register the certificates. The Accept SSL
Certificate window will open.
c. Click Save to store the certificate values to the DSView software database on the host
or click Close if you do not wish to save the certificate values.
The Authentication Service Certificate Management window will open if only
one certificate was selected. If more than one certificate was selected, each
will appear in order in subsequent Accept SSL Certificate windows.
17. To unregister certificates:
Chapter 6: Authentication Services 95