Users Guide

ManualsBrandsDell ManualsActive System ManagerOpenManage Software 5.1

121

122

123

124

125

126

127

128

129

130

Using Microsoft

Active Directory

125

Add User1 and User2 as Members in Association Object 1 (AO1), Priv1 as Privilege Objects in AO1,

and both sys1 and Group1 as Products in AO1.

Add User3 as a Member in Association Object 2 (AO2), Priv2 as a Privilege object in AO2, and Group1

as a Product in AO2.

Note that neither of the Association objects needs to be of Universal scope in this case.

Configuring Active Directory to Access Your Systems

Before you can use Active Directory to access your systems, you must configure both the Active Directory

software and the systems.

Extend the Active Directory schema (see "Extending the Active Directory Schema").

Extend the Active Directory Users and Computers Snap-in (see "Installing the Dell Extension to the

Active Directory Users and Computers Snap-In").

Add system users and their privileges to Active Directory (see "Adding Users and Privileges to Active

Directory").

For RAC systems only, enable SSL on each of your domain controllers (see "Enabling SSL on a Domain

Controller (RAC Only)").

Configure the system’s Active Directory properties using either the Web-based interface or the CLI

(see "Configuring Your Systems or Devices").

Extending the Active Directory Schema

RAC, Server Administrator, and IT Assistant schema extensions are available. You only need to extend

the schema for software or hardware that you are using. Each extension must be applied individually to

receive the benefit of its software-specific settings. Extending your Active Directory schema will add

schema classes and attributes, example privileges and association objects, and a Dell organizational unit

to the schema.

NOTE: Before you extend the schema, you must have Schema Admin privileges on the Schema Master Flexible

Single Master Operation (FSMO) Role Owner of the domain forest.

You can extend your schema using two different methods. You can use the Dell Schema Extender utility,

or you can use the Lightweight Directory Interchange Format (LDIF) script file.

NOTE: The Dell organizational unit will not be added if you use the LDIF script file.

The LDIF script files and Dell Schema Extender are located on your Dell PowerEdge™ Installation and

Server Management CD in the following respective directories:

•

CD drive

:\support\OMActiveDirectory Tools\

installation type

\LDIF Files

•

CD drive

:\support\OMActiveDirectory Tools\

installation type

\Schema Extender

Installation type will be either RAC4, RAC3, Server Administrator, or IT Assistant version 7.0 or later,

depending on your choice of schema extension.