HP Device Manager 4.6 - LDAP Troubleshooting Guide

Introduction

The purpose of this document is to demonstrate the principle of Lightweight Directory Access Protocol (LDAP) used in HP

Device Manager (HPDM) and how to troubleshoot issues that might occur while attempting to use user authentication with

Active Directory and other LDAP servers.

HPDM LDAP-related context and background

Users and groups in an Active Directory, or a different LDAP server, can be used to log in to HPDM. This allows the reuse of

existing login accounts and simplifies the management of administrative privileges with HPDM. For more background

information, see the HP Device Manager Administrator Guide.

LDAP in HPDM

Figure 1. HPDM network with an LDAP server

LDAP Server

Router

HPDM Console

Router

HPDM

Server

HPDM Server Stores the LDAP Server

Configuration and imported User/Group

information

LDAP Server is responsible for Authentication of

LDAP user from HPDM Server

The LDAP server configuration information, including User Authentication, needs to be set in HPDM (see Configuring User

Authentication). HPDM will use the configuration information to connect to the specified LDAP server. The LDAP users and

groups need to be imported into HPDM (see Importing a user or group from LDAP).

• All LDAP Server configuration and imported user and group information will be stored in the database.

• HPDM will not store the LDAP user’s password. (It is only transported to the LDAP server when the user logs in to HPDM.)

After the import is completed, you can log in to HPDM as an LDAP user or group.

• If you import a user, you can log in to HPDM with that username.

• If you import a group, all users belonging to that group can log in to HPDM with their LDAP username.