Users Guide
Using the DRAC 4 With Microsoft Active Directory 127
racadm sslcertupload -t 0x2 -f <
ADS root CA
certificate
>
racadm sslcertdownload -t 0x1 -f <
RAC SSL
certificate
>
NOTE: For Bit Mask number values, see Table B-3.
2
To specify an LDAP or Global Catalog server instead of using the servers
returned by the DNS server to search for a user name, type the following
command to enable the
Specify Server
option:
racadm config -g cfgActive Directory -o
cfgADSpecifyServer Enable 1
NOTE: If you use this option, the hostname in the CA certificate is not
matched against the name of the specified server. This is particularly useful if
you are a DRAC administrator because you can enter a hostname as well as
an IP address.
After the
Specify Server
option is enabled, you can specify an LDAP server
with an IP address as well as a fully qualified domain name (FQDN) of the
server. The FQDN consists of the hostname and the domain name of the
server.
To specify an LDAP server, type:
racadm config -g cfgActive Directory -o
cfgADDomainController <
fully qualified domain name
or IP address
>
To specify a Global Catalog server, type:
racadm config -g cfgActive Directory -o
cfgGlobalCatalog <
fully qualified domain name or IP
address
>
NOTE: If you specify the IP address as 0.0.0.0, DRAC 4 will not search for any
system.
NOTE: You can specify a list of LDAP or Global Catalog servers separated by
commas. DRAC 4 allows you to specify up to three IP addresses or
hostnames.
NOTE: If LDAPS is not correctly configured for all domains and applications,
enabling it may result in unexpected results during the functioning of the
existing applications/domains.