Manualshelf

User guide

ManualsBrandsRaritan ManualsComputer equipmentDominion KX II
131132133134135136137138139140
Chapter 7: User Management
125
Once the test is completed, a message will be displayed that lets you
know the test was successful or, if the test failed, a detailed error
message will be displayed. It will display successful result or detail
error message in failure case. It also can display group information
retrieved from remote LDAP server for the test user in case of
success.
Returning User Group Information from Active Directory Server
The Dominion KX II supports user authentication to Active Directory
®
(AD) without requiring that users be defined locally on the Dominion KX
II. This allows Active Directory user accounts and passwords to be
maintained exclusively on the AD server. Authorization and AD user
privileges are controlled and administered through the standard
Dominion KX II policies and user group privileges that are applied locally
to AD user groups.
IMPORTANT: If you are an existing Raritan, Inc. customer, and have
already configured the Active Directory server by changing the AD
schema, the Dominion KX II still supports this configuration and
you do not need to perform the following operations. See Updating
the LDAP Schema for information about updating the AD
LDAP/LDAPS schema.
To enable your AD server on the Dominion KX II:
1. Using the Dominion KX II, create special groups and assign proper
permissions and privileges to these groups. For example, create
groups such as KVM_Admin and KVM_Operator.
2. On your Active Directory server, create new groups with the same
group names as in the previous step.
3. On your AD server, assign the Dominion KX II users to the groups
created in step 2.
4. From the Dominion KX II, enable and configure your AD server
properly. See Implementing LDAP/LDAPS Remote Authentication.
Important Notes: