User's Manual
Using the CMC Directory Service 269
Configuring Single Sign-On
Microsoft Windows 2000, Windows XP, Windows Server 2003,
Windows Vista, and Windows Server 2008 can use Kerberos, a network
authentication protocol, as an authentication method allowing users
who have signed in to the domain an automatic or single sign-on to
subsequent applications such as Exchange.
What can I do if I cannot log
into the CMC using Active
Directory authentication?
How do I troubleshoot the issue?
1
Ensure that you use the correct user
domain name during a login and not
the NetBIOS name.
2
If you have a local CMC user account, log
into the CMC using your local credentials.
After you are logged in, perform the
following steps:
a
Ensure that you have checked the
Enable
Active Directory
check box on the CMC
Active Directory configuration page.
b
Ensure that the DNS setting is correct on
the CMC Networking configuration page.
c
Ensure that you have uploaded the Active
Directory certificate from your Active
Directory root certificate authority-signed
certificate to the CMC.
d
Check the Domain Controller SSL
certificates to ensure that they have
not expired.
e
Ensure that your
CMC Name
,
Root Domain Name
, and
CMC Domain
Name
match your Active Directory
environment configuration.
f
Ensure that the CMC password has a
maximum of 127 characters. While the
CMC can support passwords of up to
256 characters, Active Directory only
supports passwords that have a maximum
length of 127 characters.
Table 8-9. Using CMC With Active Directory: Frequently Asked Questions
(continued)
Question Answer