Manualshelf

White Papers

ManualsBrandsDell ManualsConverged InfrastructureStorage Solution Resources
21222324252627282930
Using Windows Active Directory For Account Authentication to PS Series Groups 22
Figure 18: Configure the Policy with CHAP Authentication
Click OK when finished to close the window.
Create new users to use the policy. The new users will be the CHAP username given to
the PS Series volume access control. Set the users up the same way described in the
section Creating Users and Groups for SAN Administration. Make sure you check the
box to
Store password using reversible encryption
in the Account tab. There is no
need to create additional user groups in this case because the CHAP users will use the
default Domain Users group for authentication.
Configuring the Windows Server 2003 IAS
In Windows Server 2003 IAS the steps are slightly different. A remote access policy will
need to be created similar to those described in Appendix A in this document.
On the Windows 2003 IAS server open Internet Authentication Services and create a
new remote access policy. Select a custom policy and give the policy a recognizable
name.
In the policy conditions Add a new condition and select Authentication-Type as the
attribute.
This will open the Authentication-Type window. Select CHAP and add it to the
Selected types: area and click OK.
Select Next > to progress to the next screen. In the Permissions screen, select Grant
remote access permission to enable remote access for the policy and click Next >.
Select the Edit Profile option to start the Dial-in Profile configuration.
In the Dial-in Profile settings navigate to the IP tab and verify that the Server settings
determine IP address assignment option is the only option checked.