Users Guide

ManualsBrandsDell ManualsActive System ManagerEMC OpenManage Enterprise

131

132

133

134

135

136

137

138

139

140

NOTE: AD and LDAP directory users can be imported and assigned one of the OpenManage Enterprise roles (Admin,

DeviceManager, or Viewer). The Single-Sign-On (SSO) feature stops at login to the console. Actions run on the devices

require a privileged account on the device.

This procedure is specific to only adding and editing the local users. While editing local users, you can edit all the user properties. However,

for directory users, only the role and device groups (in the case of a Device Manager) can be edited. For adding Directory users, see Add

or edit Active Directory groups to be used with Directory Services on page 135.

1. Select Application Settings > Users > Add.

2. In the Add New User dialog box:

a. Enter the user credentials.

The username must contain only alphanumeric characters (but underscore is allowed) and the password must contain at least one

character in: uppercase, lowercase, digit, and special character.

b. From the User Role drop-down menu, select a role:

• Administrator

• Device Manager

• Viewer

For more information, see Role-based OpenManage Enterprise user privileges on page 14.

By default, the Enabled check box is selected to indicate that the user privileges currently being set up are enabled for a user.

3. Click Finish.

A message is displayed that the user is successfully saved. A job is started to create a new user. After running the job, the new user is

created and displayed in the list of users.

Edit OpenManage Enterprise user properties

1. On the Application Settings page, under Users, select the check box corresponding to the user.

2. Complete the tasks in Add and edit OpenManage Enterprise users on page 132.

The updated data is saved.

NOTE:

When you change the role of a user, the privileges available for the new role automatically get applied. For

example, if you change a device manager to an administrator, the access rights and privileges provided for an

administrator will be automatically enabled for the device manager.

Directory services integration in OpenManage

Enterprise

Directory Services enables you to import directory groups from AD or LDAP for use on the console. OpenManage Enterprise supports

integration of the following directory services:

1. Windows Active Directory

2. Windows AD/LDS

3. OpenLDAP

4. PHP LDAP

Pre-requisites/supported attributes for LDAP Integration

Table 27. OpenManage Enterprise Pre-requisites/supported attributes for LDAP Integration

Attribute of User Login Attribute of Group

Membership

Certificate Requirement

AD/LDAP Cn, sAMAccountName Member

• Subject to Domain Controller

Certificate needs to have

FQDN. SAN field can have

IPv4 and/or IPv6 or FQDN.

Managing OpenManage Enterprise appliance settings 133