User guide
Authentication provider settings
You need to provide certain information when adding or editing an authentication
provider.
UI name CLI name
(Provider.cfg)
Description and requirements
- - -
Name name The name of the authentication provider. You can
have multiple providers for different domains.
Type mode Active Directory or LDAP. In Provider.cfg (CLI), use
ad or ldap.
Description description Free text description of the authentication
provider.
Domains domains Active Directory and LDAP allow administrators to
organize objects of a network (such as users,
computers, and devices) into a hierarchical
collection of containers.
Domains are a collection of administratively
defined objects that share a common directory
database, security policies, and trust relationships
with other domains. In this way, each domain is an
administrative boundary for objects. A single
domain can span multiple physical locations or
sites and can contain millions of objects.
A typical entry in this field of the authentication
provider would look like this:
mycompany.com
Server URLs
url ldap or ldaps (secure LDAP) with the domain
controller IP address. Default port for ldap is 389
and ldaps is 636.
Usage: one or more of
ldap://<Domain controller IP >:<port> (if not default
port)
or
ldaps://<Domain controller IP >:<port> (if not default
port)
If the authentication provider supports a
multidomain forest, use the global catalog server
IP and always specify the port number. Default is
3268 for ldap, 3269 for ldaps.
Usage: ldap(s)://<Global catalog server IP>:<port>
Manager DN
managerdn Indicates the Active Directory Bind user account
that ViPR uses to connect to Active Directory or
LDAP server. This account is used to search Active
Directory when a ViPR administrator specifies a
user for role assignment, for example.
Requirement:
Initial Configuration of ViPR Virtual Appliance
Authentication provider settings 41