Manualshelf

Owner's Manual

ManualsBrandsDell ManualsSoftwareDell OpenManage IT Assistant Version 8.9
61626364656667686970
Write access allows you to modify or set the values on the managed system.
Read access allows you to view the data reported by Server Administrator. Read access does not allow you to change or set the values on the managed
system.
Privilege Levels to Access Server Administrator Services
Table2-2summarizeswhichuserlevelshaveprivilegestoaccessandmanageServerAdministratorServices.
Table 2-2.ServerAdministratorUserPrivilegeLevels
Table2-3 defines the user privilege level abbreviations used in Table2-2.
Table 2-3.LegendforServerAdministratorUserPrivilegeLevels
Authentication
The Server Administrator authentication scheme ensures that the access types are assigned to the correct user privileges. Additionally, when you invoke the
CLI, the Server Administrator authentication scheme validates the context within which the current process is running. This authentication scheme ensures
that all Server Administrator functions, whether accessed through the Server Administrator home page or CLI, are properly authenticated.
Microsoft Windows Authentication
ForsupportedWindowsoperatingsystems,ServerAdministratorauthenticationusesIntegratedWindowsAuthentication(formerlycalledNTLM)to
authenticate.ThisauthenticationsystemallowsServerAdministratorsecuritytobeincorporatedinanoverallsecurityschemeforyournetwork.
Red Hat Enterprise Linux and SUSE Linux Enterprise Server Authentication
For supported Red Hat Enterprise Linux and SUSE Linux Enterprise Server operating systems, Server Administrator authentication is based on the Pluggable
AuthenticationModules(PAM)library.Thisdocumentedlibraryoffunctionsallowsanadministratortodeterminehowindividualapplicationsauthenticateusers.
Encryption
Access to Server Administrator is enabled over a secure HTTPS connection using secure socket layer (SSL) technology to ensure and protect the identity of the
system being managed. Java Secure Socket Extension (JSSE) is used by supported Windows, Red Hat Enterprise Linux, and SUSE Linux Enterprise Server
operating systems to protect the user credentials and other sensitive data that is transmitted over the socket connection when a user accesses the Server
Administrator.
Microsoft Active Directory
TheActiveDirectoryService(ADS)softwareactsasthecentralauthorityfornetworksecurity.ADSallowstheoperatingsystemtoverifyauser'sidentityand
control that user's access to network resources. For Dell OpenManage applications running on supported Windows platforms, Dell provides schema extensions
for customers to modify their Active Directory database to support remote management authentication and authorization. IT Assistant, Server Administrator,
and Dell Remote Access Controllers can interface with Active Directory to add and control users and privileges from one central database. For information
about using Active Directory, see "Using Microsoft Active Directory."
Authentication Protocols for Linux Operating Systems
Dell OpenManage applications (version 5.2 and later) support Network Information Services (NIS), Winbind, Kerberos, and Lightweight Directory Access
Protocol (LDAP) authentication protocols for Linux operating systems.
Service
User Privilege Level Required
View
Manage
Instrumentation
U, P, A
P, A
Remote Access
U, P, A
A
Update
U, P, A
A
Storage Management
U, P, A
A
U
User
P
Power User
A
Administrator