Users Guide
Using the DRAC 5 With Microsoft Active Directory 143
4
Create two Privilege Objects, Priv1 and Priv2, in which Priv1 has all
privileges (administrator) and Priv2 has login privileges.
5
Group user1 and user2 into Group1. The group scope of Group1 must be
Universal.
6
Add Group1 as Members in Association Object 1 (AO1), Priv1 as Privilege
Objects in AO1, and RAC1, RAC2 as RAC Devices in AO1.
7
Add User3 as Members in Association Object 2 (AO2), Priv2 as Privilege
Objects in AO2, and RAC2 as RAC Devices in AO2.
Configuring Extended Schema Active Directory to Access Your DRAC 5
Before using Active Directory to access your DRAC 5, configure the Active
Directory software and the DRAC 5 by performing the following steps in
order:
1
Extend the Active Directory schema (see "Extending the Active Directory
Schema" on page 143).
2
Extend the Active Directory Users and Computers Snap-in (see "Installing
the Dell Extension to the Active Directory Users and Computers Snap-In"
on page 149).
3
Add DRAC 5 users and their privileges to Active Directory (see "Adding
DRAC 5 Users and Privileges to Active Directory" on page 150).
4
Enable SSL on each of your domain controllers (see "Enabling SSL on a
Domain Controller" on page 162).
5
Configure the DRAC 5 Active Directory properties using either the DRAC
5 Web-based interface or the RACADM (see "Configuring the DRAC 5
With Extended Schema Active Directory and Web-Based Interface" on
page 152 or "Configuring the DRAC 5 With Extended Schema Active
Directory and RACADM" on page 154").
Extending the Active Directory Schema
Extending your Active Directory schema adds a Dell organizational unit,
schema classes and attributes, and example privileges and association objects
to the Active Directory schema. Before you extend the schema, ensure that
you have Schema Admin privileges on the Schema Master Flexible Single
Master Operation (FSMO) Role Owner of the domain forest.