Users Guide
Using iDRAC6 Directory Service 161
Testing Your Configurations
If you want to verify whether your configuration works, or if you need to
diagnose the problem with your failed Active Directory log in, you can test
your settings from iDRAC6 Web interface.
After you finish configuring settings in iDRAC6 Web interface, click Test
Settings at the bottom of the screen. You will be required to enter a test user's
name (for example, username@domain.com) and password to run the test.
Depending on your configuration, it may take some time for all of the test
steps to complete and display the results of each step. A detailed test log will
display at the bottom of the results screen.
If there is a failure in any step, examine the details in the test log to identify
the problem and a possible solution. For most common errors, see
"Frequently Asked Questions" on page 165.
If you need to make changes to your settings, click the Active Directory tab
and change the configuration step-by-step.
Using iDRAC6 with LDAP Directory Service
iDRAC6 provides a generic solution to support Lightweight Directory Access
Protocol (LDAP)-based authentication. This feature does not require any
schema extension on your directory services.
To make iDRAC6 LDAP implementation generic, the commonality between
different directory services is utilized to group users and then map the
user
-group relationship. The directory service specific action is the schema.
For example, they may have different attribute names for the group, user, and
the link between the user and the group. These actions can be configured in
iDRAC6.
Login Syntax (Directory User versus Local User)
Unlike Active Directory, special characters ("@", "\", and "/") are not used to
differentiate an LDAP user from a local user. The login user must enter the
user name, excluding the domain name. iDRAC6 takes the user name as is
and does not break it down to the user name and user domain.