User's Manual
252 Using the CMC Directory Service
4
Create two Privilege Objects, Priv1 and Priv2, in which Priv1 has all
privileges (administrator) and Priv2 has login privilege.
5
Group user1 and user2 into Group1. The group scope of Group1
must be Universal.
6
Add Group1 as Members in Association Object 1 (A01), Priv1 as Privilege
Objects in A01, and RAC1, RAC2 as RAC Devices in A01.
7
Add User3 as Members in Association Object 2 (A02), Priv2 as Privilege
Objects in A02, and RAC2 as RAC Devices in A02.
Configuring Extended Schema Active Directory to Access Your CMC
Before using Active Directory to access your CMC, configure the Active
Directory software and the CMC:
1
Extend the Active Directory schema (see "Extending the Active Directory
Schema" on page 252).
2
Extend the Active Directory Users and Computers Snap-In (see "Installing
the Dell Extension to the Active Directory Users and Computers Snap-In"
on page 258).
3
Add CMC users and their privileges to Active Directory (see "Adding
CMC Users and Privileges to Active Directory" on page 259).
4
Enable SSL on each of your domain controllers.
5
Configure the CMC Active Directory properties using either the CMC
Web interface or the RACADM (see "Configuring the CMC With
Extended Schema Active Directory and the Web Interface" on page 262 or
"Configuring the CMC With Extended Schema Active Directory and
RACADM" on page 265).
Extending the Active Directory Schema
Extending your Active Directory schema adds a Dell organizational unit,
schema classes and attributes, and example privileges and association objects
to the Active Directory schema. Before you extend the schema, ensure that
you have Schema Admin privilege on the Schema Master Flexible Single
Master Operation (FSMO) Role Owner of the domain forest.