Manualshelf

Developers Guide

ManualsBrandsDell ManualsConverged InfrastructureEnterprise Solution Resources
12345678910
5 Dell EMC SC Series and Active Directory Integration | CML1135
2 Introduction to SC Series Active Directory integration
2.1 Overview
Dell EMC Storage introduced Active Directory integration with the release of Storage Center Operating
System (SCOS) 6.3.1. Since the initial release, improvements such as single sign on and automatic discovery
make configuring and managing SC Series Active Directory integration seamless and intuitive.
Note: Active Directory integration is available on both the DSM Data Collector and SC Series arrays.
However, AD integration on the Data Collector only applies to the Data Collector itself, and does not apply to
any SC Series arrays managed by the Data Collector.
In environments with more than one SC Series array, enable AD integration individually on each array.
2.2 Authentication method
SC Series AD integration requires Kerberos v5 authentication. NTLMv2 authentication is not supported.
2.3 Single sign-on
The DSM client supports single sign-on (SSO) when connecting to a DSM Data Collector configured to use
Active Directory integration, or when connecting directly to an SC Series array configured to use Active
Directory integration. Prior to using SSO, the Active Directory user must be granted rights to the DSM Data
Collector or SC Series array.
2.4 Active Directory functional levels
SC Series AD integration supports Windows 2016, 2012, 2008 R2, 2008, and 2003 R2 Active Directory
functional levels, and will function in environments with domain controllers running a combination of any of the
aforementioned server operating systems. The functional level of a domain or forest controls which advanced
features are available in the domain or forest.
Note: The functional level of a domain or forest is determined by the domain controller running the oldest
version of Windows Server in the domain or forest. For example, a configuration with Windows Server 2012
and a Windows Server 2008 R2 domain controller would run at a 2008 functional level. If possible, it is
recommended to run at the latest functional level.
2.5 Read-only domain controllers (RODC)
SC Series AD integration supports the use of a combination of traditional domain controllers and read-only
domain controllers for authentication.