Users Guide

ManualsBrandsDell ManualsActive System ManagerOpenManage Software 5.1.1

Table 8-15. IT Assistant-Specific Attributes Added to the Active Directory Schema



Active Directory Users and Computers Snap-In



Installing the Dell Extension to the Active Directory Users and Computers Snap-In

When you extend the schema in Active Directory, you must also extend the Active Directory Users and Computers snap-in so that the administrator can

manage Products, Users and User Groups, Associations, and Privileges. You only need to extend the snap-in once, even if you have added more than one

schema extension. You must install the snap-in on each system that you intend to use for managing these objects. The Dell Extension to the Active Directory

Users and Computers Snap-In is an option that can be installed when you install your systems management software using the Dell PowerEdge Installation and

Server Management CD.



Opening the Active Directory Users and Computers Snap-In

To open the Active Directory Users and Computers snap-in, perform the following steps:



1. If you are on the domain controller, click Start Admin Tools® Active Directory Users and Computers. If you are not on the domain controller, you must

have the appropriate Microsoft administrator pack installed on your local system. To install this administrator pack, click Start® Run, type MMC and

pressEnter.

The Microsoft Management Console (MMC) window opens.



2. Click File (or Console on systems running Windows 2000) in the Console 1 window.



3. Click Add/Remove Snap-in.



4. Select the Active Directory Users and Computers snap-in and click Add.



5. Click Close and click OK.



Adding Users and Privileges to Active Directory

The Dell-extended Active Directory Users and Computers snap-in allows you to add DRAC, Server Administrator, and IT Assistant users and privileges by

creating RAC, Association, and Privilege objects. To add an object, perform the steps in the applicable subsection.



Creating a Product Object

Attribute Name/Description

Assigned OID/Syntax Object Identifier

Single Valued

dellOMSAIsReadOnlyUser

TRUE if the User has Read-OnlyrightsinServerAdministrator

1.2.840.113556.1.8000.1280.1.2.2.1

Boolean (LDAPTYPE_BOOLEAN 1.3.6.1.4.1.1466.115.121.1.7)

TRUE

dellOMSAIsReadWriteUser

TRUE if the User has Read-Write rights in Server Administrator

1.2.840.113556.1.8000.1280.1.2.2.2

Boolean (LDAPTYPE_BOOLEAN 1.3.6.1.4.1.1466.115.121.1.7)

TRUE

dellOMSAIsAdminUser

TRUE if the User has Administrator rights in Server Administrator

1.2.840.113556.1.8000.1280.1.2.2.3

Boolean (LDAPTYPE_BOOLEAN 1.3.6.1.4.1.1466.115.121.1.7)

TRUE



Attribute Name/Description



Assigned OID/Syntax Object Identifier



Single Valued

dellItaIsReadWriteUser

TRUE if the User has Read-WriterightsinITAssistant

1.2.840.113556.1.8000.1280.1.3.2.1

Boolean (LDAPTYPE_BOOLEAN 1.3.6.1.4.1.1466.115.121.1.7)

TRUE

dellItaIsAdminUser

TRUEiftheUserhasAdministratorrightsinITAssistant

1.2.840.113556.1.8000.1280.1.3.2.2

Boolean (LDAPTYPE_BOOLEAN 1.3.6.1.4.1.1466.115.121.1.7)

TRUE

dellItaIsReadOnlyUser

TRUE if the User has Read-OnlyrightsinITAssistant

1.2.840.113556.1.8000.1280.1.3.2.3

Boolean (LDAPTYPE_BOOLEAN 1.3.6.1.4.1.1466.115.121.1.7)

TRUE

NOTE: You must install the Administrator Pack on each management station that is managing the new Active Directory objects. The installation is

described in the following section, "Opening the Active Directory Users and Computers Snap-In." If you do not install the Administrator Pack, then you

cannotviewthenewobjectinthecontainer.

NOTE: For more information about the Active Directory Users and Computers snap-in,seeyourMicrosoftdocumentation.