Owner's Manual
Using the CMC Directory Service 275
You can extend the Active Directory database by adding your own unique
Attributes and Classes to address your company’s environment-specific
needs. Dell has extended the schema to include the necessary changes to
support remote management Authentication and Authorization.
Each Attribute or Class that is added to an existing Active Directory Schema
must be defined with a unique ID. To maintain unique IDs across the
industry, Microsoft maintains a database of Active Directory Object
Identifiers (OIDs). To extend the schema in Microsoft's Active Directory,
Dell established unique OIDs, unique name extensions, and uniquely linked
attribute IDs for Dell-specific Attributes and Classes:
Dell extension: dell
Dell base OID: 1.2.840.113556.1.8000.1280
RAC LinkID range: 12070–2079
Overview of the RAC Schema Extensions
Dell provides a group of properties that you can configure. The Dell extended
schema include Association, Device, and Privilege properties.
The Association property links together users or groups with a specific set of
privileges to one or more RAC devices. This model provides an Administrator
maximum flexibility over the different combinations of users, RAC privileges,
and RAC devices on the network without adding too much complexity.
Active Directory Object Overview
When there are two CMCs on the network that you want to integrate with
Active Directory for Authentication and Authorization, you must create at
least one Association Object and one RAC Device Object for each CMC.
You can create multiple Association Objects, and each Association Object
can be linked to as many users, groups of users, or RAC Device Objects as
required. The users and RAC Device Objects can be members of any domain
in the enterprise.
However, each Association Object can be linked (or, may link users, groups of
users, or RAC Device Objects) to only one Privilege Object. This example
allows an Administrator to control each user’s privileges on specific CMCs.