Users Guide
134 Using iDRAC6 With Microsoft Active Directory
Single Domain Versus Multiple Domain Scenarios
If all of the login users and role groups, as well as the nested groups, are in the
same domain, then only the domain controllers’ addresses must be configured
on iDRAC6. In this single domain scenario, any group type is supported.
If all of the login users and role groups, or any of the nested groups, are from
multiple domains, then Global Catalog server addresses are required to be
configured on iDRAC6. In this multiple domain scenario, all of the role
groups and nested groups, if any, must be Universal Group type.
Configuring Standard Schema Active Directory to Access iDRAC6
You must perform the following steps to configure Active Directory before an
Active Directory user can access iDRAC6:
1
On an Active Directory server (domain controller), open the
Active
Directory Users and Computers Snap-in.
2
Create a group or select an existing group. The name of the group and the
name of this domain must be configured on iDRAC6 by using either the
Web-based interface or RACADM (see "Configuring Active Directory
With Standard Schema Using the iDRAC6 Web-Based Interface" or
"Configuring Active Directory With Standard Schema Using RACADM").
3
Add the Active Directory user as a member of the Active Directory group
to access iDRAC6.
Configuring Active Directory With Standard Schema Using the iDRAC6
Web-Based Interface
1
Open a supported Web browser window.
2
Log in to the iDRAC6 Web interface.
3
In the system tree, select
System
→
Remote Access
→
iDRAC
.
4
Click the
Network Security
tab, and then click
Active Directory
.
The
Active Directory Configuration and Management
screen appears.
5
Scroll to the bottom of the screen and click
Configure Active Directory
.
The
Step 1 of 4 Active Directory Configuration and Management
screen appears.
6
Under
Certificate Settings
, select
Enable Active Directory
.