User's Manual
284 Using the CMC Directory Service
Managing LDAP Group Settings
The table in the Group Settings section lists role groups, displaying associated
names, domains, and privileges for any role groups that are already
configured.
• To configure a new role group, click a role group name that does not have a
name, domain, and privilege listed.
• To change the settings for an existing role group, click the role group
name.
When you click a role group name, the Configure Role Group page appears.
Help for that page is available through the Help link at the top right corner of
the page.
Managing LDAP Security Certificates
This sections displays the properties for the LDAP certificate recently
uploaded to the CMC. If you uploaded a certificate, use this information to
verify that the certificate is valid and has not expired.
NOTE: By default, CMC does not have a certificate authority-issued server
certificate for Active Directory. You must upload a current, certificate authority-
signed server certificate.
The following properties for the certificate are displayed:
• Serial Number - The certificate's serial number.
• Subject Information - The certificate's subject (name of the person or
company certified).
• Issuer Information - The certificate's issuer (name of the Certificate
Authority.
• Valid From - The starting date of the certificate.
• Valid To - The expiry date of the certificate.
Use the following controls to upload and download this certificate:
• Upload - Initiates the upload process for the certificate. This certificate,
which you obtain from your LDAP server, grants access to the CMC.
• Download - Initiates the download process. You are prompted for the
location to save the file. When you select this option and click
Next
, a
File
Download
dialog box appears. Use this dialog box to specify a location on
your management station or shared network for the server certificate.