Users Guide
Using the DRAC 5 With Microsoft Active Directory 131
Specify Server for Active Directory Configuration
If you want to specify an LDAP, Global Catalog server, or Association Object
(applicable only for Extended Schema) domain instead of using the servers
returned by the DNS server to search for a user name, type the following
command to enable the Specify Server option:
racadm config -g cfgActive Directory -o
cfgADSpecifyServer Enable 1
NOTE: If you use this option, the hostname in the CA certificate is not matched
against the name of the specified server. This is particularly useful if you are a
DRAC administrator because it enables you to enter a hostname as well as an
IP address.
After the Specify Server option is enabled, you can specify an LDAP server or
a Global Catalog server with an IP address or a fully qualified domain name of
the server (FQDN). The FQDN consists of the hostname and the domain
name of the server.
NOTE: If you are using Active Directory authentication based on Kerberos, specify
only the FQDN of the server; specifying the IP address is not supported. For more
information, see "Enabling Kerberos Authentication" on page 147.
To specify an LDAP server using the command line interface (CLI), type:
racadm config -g cfgActive Directory -o
cfgADDomainController <fully qualified domain name or
IP address>
To specify a Global Catalog server using the command line interface (CLI),
type:
racadm config -g cfgActive Directory -o
cfgGlobalCatalog <fully qualified domain name or
IP address>
To specify an Association Object (applicable only for Extended Schema)
domain using the CLI, type:
racadm config -g cfgActive Directory -o cfgAODomain
<domain>:<fully qualified domain name or IP address>
where <domain> is the domain where the Association Object resides and
IP/FQDN is the IP address or the FQDN of the specific host (Domain
Controller of domain) to which the DRAC 5 connects.