Manualshelf

Users Guide

ManualsBrandsDell ManualsActive System ManagerDRAC5 Version 1.40 with Dell OpenManage 5.5
121122123124125126127128129130
Using the DRAC 5 With Microsoft Active Directory 125
Accumulating Privileges Using Extended Schema
The Extended Schema Authentication mechanism supports Privilege
Accumulation from different privilege objects associated with the same user
through different Association Objects. In other words, Extended Schema
Authentication accumulates privileges to allow the user the super set of all
assigned privileges corresponding to the different privilege objects associated
with the same user.
Figure 6-5 provides an example of accumulating privileges using Extended
Schema.
Figure 6-5. Privilege Accumulation for a User
The figure shows two Association Objects—A01 and A02. These Association
Objects may be part of the same or different domains. User1 is associated to
RAC1 and RAC2 through both association objects. Therefore, User1 has
accumulated privileges that results when combining the Privileges set for
objects Priv1 and Priv2.
A01
A02
Group1
Priv1
Priv2
User1
User2
User1
RAC1
RAC2