Users Guide

ManualsBrandsDell ManualsActive System ManagerOpenManage Software 5.1

131

132

133

134

135

136

137

138

139

140

Using Microsoft

Active Directory

137

Locate and right-click the root CA certificate, select

All Tasks

, and click

Export

In the

Certificate Export Wizard

, click

and select

No do not export the private key

Click

and select

Base-64 encoded X.509 (.cer)

as the format.

Click

and save the certificate to a location of your choice. You will need to upload this certificate

to the DRAC 4. To do this, go to the

DRAC 4 Web-based interface

→

Configuration tab

→

Active

Directory page

. Or, you can use the

racadm

CLI commands (see "Configuring the DRAC 4 Active

Directory Settings Using the racadm CLI").

Click

Finish

and click

Importing the DRAC 4 Firmware SSL Certificate to All Domain Controllers’ Trusted Certificate Lists

NOTE: If the DRAC 4 firmware SSL certificate is signed by a well-known CA, you do not need to perform the steps

described in this section.

NOTE: The following steps may vary slightly if you are using Windows 2000.

The DRAC 4 SSL certificate is the same certificate that is used for the DRAC 4 Web server. All DRAC 4

controllers are shipped with a default self-signed certificate. You can get this certificate from the

DRAC 4 by selecting

Download DRAC 4 Server Certificate

(see the DRAC 4 Web-based interface

Configuration

tab and the

Active Directory

subtab).

On the domain controller, open an

MMC Console

window and select

Certificates

→

Trusted Root

Certification Authorities

Right-click

Certificates

, select

All Tasks

and click

Import

Click

and browse to the SSL certificate file.

Install the RAC SSL Certificate in each domain controller’s

Trusted Root Certification Authority

If you have installed your own certificate, ensure that the CA signing your certificate is in the

Trusted Root Certification Authority

list. If the CA is not in the list, you must install it on all your

Domain Controllers.

Click

and select whether you would like Windows to automatically select the certificate store

based on the type of certificate, or browse to a store of your choice.

Click

Finish

and click

Configuring Your Systems or Devices

For instructions on how to configure your Server Administrator or IT Assistant systems using CLI commands,

see "Configuring Active Directory Using CLI on Systems Running Server Administrator" and

"Configuring Active Directory on Systems Running IT Assistant." For DRAC users, there are two ways to

configure DRAC 4. See either "Configuring the DRAC 4 Using the Web-Based Interface" or

"Configuring the DRAC 4 Active Directory Settings Using the racadm CLI."

NOTE: The systems on which Server Administrator and/or IT Assistant are installed must be a part of the Active

Directory domain and should also have computer accounts on the domain.