Users Guide
Using the DRAC 4 With Microsoft Active Directory 131
Importing the DRAC 4 Firmware SSL Certificate
Use the following procedure to import the DRAC 4 firmware SSL certificate
to all domain controller trusted certificate lists.
NOTE: If the DRAC 4 firmware SSL certificate is signed by a well-known CA, you do
not need to perform the steps described in this section.
NOTE: The following steps may vary slightly if you are using Windows 2000.
The DRAC 4 SSL certificate is the identical certificate used for the DRAC 4
Web server. All DRAC 4 controllers are shipped with a default self-signed
certificate. To access the certificate using the DRAC 4 Web-based interface,
click the Configuration Tab, click Active Directory, and then click Download
DRAC 4 Server Certificate.
1
On the domain controller, open an
MMC Console
window and select
Certificates
→
Trusted Root Certification Authorities
.
2
Right-click
Certificates
, select
All Tasks
and click
Import
.
3
Click
Next
and browse to the SSL certificate file.
4
Install the RAC SSL Certificate in each domain controller’s
Trusted Root
Certification Authority
.
If you have installed your own certificate, ensure that the CA signing your
certificate is in the
Trusted Root Certification Authority
list. If the
Authority is not in the list, you must install it on all your Domain
Controllers.
5
Click
Next
and select whether you would like Windows to automatically
select the certificate store based on the type of certificate, or browse to a
store of your choice.
6
Click
Finish
and click
OK
.
Supported Active Directory Configuration
The Active Directory querying algorithm of the DRAC 4 supports multiple
trees in a single forest.
DRAC 4 Active Directory Authentication supports mixed mode (that is, the
domain controllers in the forest run different operating systems, such as
Microsoft Windows NT
®
4.0, Windows 2000, or Windows Server 2003).
However, all objects used by the DRAC 4 querying process (among user,