Users Guide
132 Using the DRAC 4 With Microsoft Active Directory
RAC Device Object, and Association Object) should be in the same domain.
The Dell-extended Active Directory Users and Computers snap-in checks
the mode and limits users in order to create objects across domains if in
mixed mode.
DRAC 4 Active Directory supports multiple domain environments provided
the domain forest function level is Native mode or Windows 2003 mode. The
Association Object and the Group Object where User, RAC, and Group
Objects are added from different domains, should have Universal scope.
NOTE: The Association Object and the Privilege Object must be in the same
domain. The Dell-extended Active Directory Users and Computers snap-in forces
you to create these two objects in the same domain. Other objects can be in
different domains.
Using Active Directory to Log In to the DRAC 4
You can use Active Directory to log in to the DRAC 4 through the Web-based
interface, remote racadm, or the serial or telnet console.
The login syntax is consistent for all three methods:
<username@domain>
or <
domain>\<username>
or
<domain>/<username>
where
<username>
is an ASCII string of 1–256 bytes. No white space and
no special characters (such as \, /, or @) are allowed in either the user name or
the domain name.
NOTE: You cannot specify NetBIOS domain names, such as Americas, since those
names cannot be resolved.
4096-Bit Key Encryption
DRAC 4 firmware version 1.40 and later support 4096-bit key encryption
between the managed system and the Active Directory server—a practice that
is recommended by Microsoft.
In the standard Active Directory environment, the user name and password is
authenticated by exchanging user information between Active Directory
systems in a corporate network. In firmware 1.40 and later, user authentication
is achieved by exchanging user information and the CA certificate directly
between the DRAC 4 card and the Active Directory system using 4096-bit key
encryption. The Active Directory server transmits a trusted CA certificate to