Users Guide
Using the DRAC 5 With Microsoft Active Directory 123
2
If you want to specify an LDAP, Global Catalog server, or Association
Object domain instead of using the servers returned by the DNS server to
search for a user name, type the following command to enable the
Specify
Server
option:
racadm config -g cfgActive Directory -o
cfgADSpecifyServer Enable 1
NOTE: If you use this option, the hostname in the CA certificate is not
matched against the name of the specified server. This is particularly useful if
you are a DRAC administrator because it enables you to enter a hostname as
well as an IP address.
After the
Specify Server
option is enabled, you can specify an LDAP server
or a Global Catalog server, with an IP address or a fully qualified domain
name of the server (FQDN). The FQDN consists of the hostname and the
domain name of the server.
NOTE: If you are using Active Directory authentication based on Kerberos,
specify only the FQDN of the server; specifying the IP address is not
supported. For more information, see "Enabling Kerberos Authentication."
To specify an LDAP server using the command line interface (CLI), type:
racadm config -g cfgActive Directory -o
cfgADDomainController <
fully qualified domain name
or IP address
>
To specify a Global Catalog server using the command line interface
(CLI), type:
racadm config -g cfgActive Directory -o
cfgGlobalCatalog <
fully qualified domain name or
IP address
>
To specify an Association Object domain using the command line
interface (CLI), type:
racadm config -g cfgActive Directory -o
cfgAODomain <domain>:<
fully qualified domain name
or IP address
>
where <domain> is the domain where the Association Object resides and
IP/FQDN is the IP address or the FQDN of the specific host (Domain
Controller of domain) to which the DRAC 5 connects.