Manualshelf

White Papers

ManualsBrandsDell ManualsConverged InfrastructureSystems Management Solution Resources
11121314151617181920
Active Directory Configuration
17
Figure 9. Upload Complete and the Certificate.
If you get a message indicating that the Certificate is not valid, there may be a date/time
discrepancy between your CA and the iDRAC. Make sure the date and time on the iDRAC match the
date and time on the CA (the Active Directory Server in this document) and retry.
Note: If the certificate was issued from a newly-created CA, it may continue to be reported as not
valid, even though the iDRAC and CA server dates and times match. This is because the iDRAC
treats its time as UTC (Coordinated Universal Time). For example, if your CA server was created
today at 2:00 P.M. Central Standard Time, the iDRAC views this as 2:00 P.M. UTC, a difference of 6
hours. As a result, the "valid from" timestamp on the certificate is not considered valid by the
iDRAC until 8:00 P.M. on the day the CA was created. Alternatively, you can temporarily move the
time on the Server(s) containing the iDRAC ahead by the appropriate amount for your time zone
and reset the iDRAC, or wait until the time has passed. Dell is aware of this issue and is developing
a resolution for a later release.
2. After you receive the Upload complete message, click OK.
3. Click Next.
4. Select Enable Active Directory.
5. Clear Enable Single Sign-on.
6. User Domain Name. Click Add and enter the FQDN of your domain. For example, ci.local, and
click OK.
7. Select Specify Domain Controller Addresses and enter the FQDN of your Domain Controller for
Domain Controller Server Address 1 (For example, SCCM.ci.local).
8. Click Next.
9. Select Standard Schema.
10. Click Next.
11. Select Specify Global Catalog Server Addresses and enter the FQDN of your Domain
Controller for Global Catalog Server Address 1 (For example, SCCM.ci.local).
12. Click Role Group 1.