User's Manual
Using the CMC Directory Service 269
racadm config -g cfgLanNetworking -o
cfgDNSServer2
<secondary DNS IP address>
The Extended Schema feature configuration is complete.
Frequently Asked Questions
Table 8-9. Using CMC With Active Directory: Frequently Asked Questions
Question Answer
Can I log into CMC using
Active Directory across
multiple trees?
Yes. The CMC’s Active Directory querying
algorithm supports multiple trees in a
single forest.
Does the login to CMC using Active
Directory work in mixed mode (that
is, the domain controllers in the
forest run different operating
systems, such as Microsoft Windows
2000 or Windows Server 2003)?
Yes. In mixed mode, all objects used by the
CMC querying process (among user,
RAC Device Object, and Association Object)
must be in the same domain.
The Dell-extended Active Directory Users and
Computers Snap-In checks the mode and
limits users in order to create objects across
domains if in mixed mode.
Does using CMC with
Active Directory support
multiple domain environments?
Yes. The domain forest function level must be
in Native mode or Windows 2003 mode.
In addition, the groups among Association
Object, RAC user objects, and RAC Device
Objects (including Association Object) must
be universal groups.
Can these Dell-extended
objects (Dell Association Object,
Dell RAC Device, and Dell
Privilege Object) be in
different domains?
The Association Object and the Privilege
Object must be in the same domain.
The Dell-extended Active Directory Users and
Computers Snap-In forces you to create these
two objects in the same domain. Other objects
can be in different domains.
Are there any restrictions
on Domain Controller
SSL configuration?
Yes. All SSL certificates for Active Directory
servers in the forest must be signed by the
same root certificate authority-signed
certificate, because CMC only allows you to
upload one trusted certificate authority-signed
SSL certificate.