Home > Dell > System > Dell Drac 5 User Guide

Dell Drac 5 User Guide

Add to Favourites
    Download as PDF

    Here you can view all the pages of manual Dell Drac 5 User Guide. The Dell manuals for System are available online for free. You can easily download all the documents as PDF.

    Overview View all the pages Comments

    Page 131

    Page 131 Using the DRAC 5 With Microsoft Active Directory131 Specify Server for Active Directory Configuration If you want to specify an LDAP, Global Catalog server, or Association Object (applicable only for Extended Schema) domain instead of using the servers returned by the DNS server to search for a user name, type the following command to enable the Specify Server option: racadm config -g cfgActive Directory -o cfgADSpecifyServer Enable 1 NOTE: If you use this option, the hostname in the CA certificate... 
    Using the DRAC 5 With Microsoft Active Directory131
Specify Server for Active Directory Configuration
If you want to specify an LDAP, Global Catalog server, or Association Object 
(applicable only for Extended Schema) domain instead of using the servers 
returned by the DNS server to search for a user name, type the following 
command to enable the Specify Server option:
racadm config -g cfgActive Directory -o 
cfgADSpecifyServer Enable 1
 NOTE: If you use this option, the hostname in the CA certificate...

    Page 132

    Page 132 132Using the DRAC 5 With Microsoft Active Directory To specify the Association Object, ensure that you also provide the IP or FQDN of the Global Catalog. NOTE: If you specify the IP address as 0.0.0.0, DRAC 5 will not search for any server. You can specify a list of LDAP, Global Catalog servers, or Association Objects separated by commas. DRAC 5 allows you to specify up to four IP addresses or hostnames. If LDAPS is not correctly configured for all domains and applications, enabling it may produce... 
    132Using the DRAC 5 With Microsoft Active Directory
To specify the Association Object, ensure that you also provide the IP or 
FQDN of the Global Catalog.
 NOTE: If you specify the IP address as 0.0.0.0, DRAC 5 will not search for any 
server.
You can specify a list of LDAP, Global Catalog servers, or Association Objects 
separated by commas. DRAC 5 allows you to specify up to four IP addresses 
or hostnames.
If LDAPS is not correctly configured for all domains and applications, 
enabling it may produce...

    Page 133

    Page 133 Using the DRAC 5 With Microsoft Active Directory133 Configuring and Managing Active Directory Certificates To access the Active Directory Main Menu: 1 Expand the System tree and click Remote Access. 2Click the Configuration tab and click Active Directory. Ta b l e 6 - 9 l i s t s t h e Active Directory Main Menu page options. Configuring Active Directory (Standard Schema and Extended Schema) 1In the Active Directory Main Menu page, select Configure Active Directory and click Next. 2In the Active... 
    Using the DRAC 5 With Microsoft Active Directory133
Configuring and Managing Active Directory 
Certificates
To access the Active Directory Main Menu:
1
Expand the System tree and click Remote Access.
2Click the Configuration tab and click Active Directory.
Ta b l e 6 - 9  l i s t s  t h e  Active Directory Main Menu page options.
Configuring Active Directory (Standard Schema and Extended Schema)
1In the Active Directory Main Menu page, select Configure Active 
Directory
 and click Next. 
2In the Active...

    Page 134

    Page 134 134Using the DRAC 5 With Microsoft Active Directory 4Click the appropriate Active Directory Configuration page button to continue. See Table 6-11. 5To configure the Role Groups for Active Directory Standard Schema, click on the individual Role Group (1-5). See Table 6-12 and Table 6-13. NOTE: To save the settings on the Active Directory Configuration and Management page, you have to click Apply before proceeding to the Custom Role Group page. Table 6-10. Active Directory Configuration and... 
    134Using the DRAC 5 With Microsoft Active Directory
4Click the appropriate Active Directory Configuration page button to 
continue. See Table 6-11.
5To configure the Role Groups for Active Directory Standard Schema, click 
on the individual Role Group (1-5). See Table 6-12 and Table 6-13.
 NOTE: To save the settings on the Active Directory Configuration and 
Management page, you have to click Apply before proceeding to the Custom 
Role Group page. 
Table 6-10. Active Directory Configuration and...

    Page 135

    Page 135 Using the DRAC 5 With Microsoft Active Directory135 Role GroupsThe list of role groups associated with the DRAC 5 card. To change the settings for a role group, click their role group number, in the role groups list. The Configure Role Group window displays. NOTE: If you click on the role group link prior to applying the settings for the Active Directory Configuration and Management page, you will lose these settings. Group NameThe name that identifies the role group in the Active Directory... 
    Using the DRAC 5 With Microsoft Active Directory135
Role GroupsThe list of role groups associated with the DRAC 5 card. 
To change the settings for a role group, click their role 
group number, in the role groups list. The Configure Role 
Group window displays.
NOTE: If you click on the role group link prior to applying the 
settings for the Active Directory Configuration and 
Management page, you will lose these settings.
Group NameThe name that identifies the role group in the Active 
Directory...

    Page 136

    Page 136 136Using the DRAC 5 With Microsoft Active Directory Configure UsersEnables the user to allow specific users to access the system. Clear LogsEnables the user to clear the DRAC logs. Execute Server Control CommandsEnables the user to execute racadm commands. Access Console RedirectionEnables the user to run Console Redirection. Access Virtual MediaEnables the user to run and use Virtual Media. Te s t A l e r t sEnables the user to send test alerts (e-mail and PET) to a specific user. Execute Diagnostic... 
    136Using the DRAC 5 With Microsoft Active Directory
Configure UsersEnables the user to allow specific users to access 
the system.
Clear LogsEnables the user to clear the DRAC logs.
Execute Server Control 
CommandsEnables the user to execute racadm commands.
Access Console RedirectionEnables the user to run Console Redirection.
Access Virtual MediaEnables the user to run and use Virtual Media.
Te s t  A l e r t sEnables the user to send test alerts (e-mail and 
PET) to a specific user.
Execute Diagnostic...

    Page 137

    Page 137 Using the DRAC 5 With Microsoft Active Directory137 Uploading an Active Directory CA Certificate 1In the Active Directory Main Menu page, select Upload Active Directory CA Certificate and click Next. 2In the Certificate Upload page, in the File Path field, type the file path of the certificate or click Browse to navigate to the certificate file. NOTE: The File Path value displays the relative file path of the certificate you are uploading. You must type the absolute file path, which includes the... 
    Using the DRAC 5 With Microsoft Active Directory137
Uploading an Active Directory CA Certificate
1In the Active Directory Main Menu page, select Upload Active Directory 
CA Certificate
 and click Next.
2In the Certificate Upload page, in the File Path field, type the file path of 
the certificate or click 
Browse to navigate to the certificate file.
 NOTE: The File Path value displays the relative file path of the certificate you 
are uploading. You must type the absolute file path, which includes the...

    Page 138

    Page 138 138Using the DRAC 5 With Microsoft Active Directory Enabling SSL on a Domain Controller When the DRAC 5 authenticates users against an Active Directory domain controller, it starts an SSL session with the domain controller. At this time, the domain controller should publish a certificate signed by the Certificate Authority (CA)—the root certificate of which is also uploaded into the DRAC 5. In other words, for DRAC 5 to be able to authenticate to any domain controller—whether it is the root or the... 
    138Using the DRAC 5 With Microsoft Active Directory
Enabling SSL on a Domain Controller
When the DRAC 5 authenticates users against an Active Directory domain 
controller, it starts an SSL session with the domain controller. At this time, 
the domain controller should publish a certificate signed by the Certificate 
Authority (CA)—the root certificate of which is also uploaded into the 
DRAC 5. In other words, for DRAC 5 to be able to authenticate to any 
domain controller—whether it is the root or the...

    Page 139

    Page 139 Using the DRAC 5 With Microsoft Active Directory139 4In the Console 1 (MMC) window, click Fil e (or Console on Windows 2000 machines ) and select Add/Remove Snap-in. 5In the Add/Remove Snap-In window, click Add. 6In the Standalone Snap-In window, select Certificates and click Add. 7Select Computer account and click Next. 8Select Local Computer and click Finish. 9Click OK. 10In the Console 1 window, expand the Certificates folder, expand the Pe r s o n a l folder, and click the Certificates folder.... 
    Using the DRAC 5 With Microsoft Active Directory139
4In the Console 1 (MMC) window, click Fil e (or Console on Windows 2000 
machines
) and select Add/Remove Snap-in.
5In the Add/Remove Snap-In window, click Add.
6In the Standalone Snap-In window, select Certificates and click Add.
7Select Computer account and click Next.
8Select Local Computer and click Finish.
9Click OK.
10In the Console 1 window, expand the Certificates folder, expand the 
Pe r s o n a l folder, and click the Certificates folder....

    Page 140

    Page 140 140Using the DRAC 5 With Microsoft Active Directory fIn the Certificate Upload screen, perform one of the following procedures: •Click Browse and select the certificate •In the Va l u e field, type the path to the certificate. gClick Apply. Importing the DRAC 5 Firmware SSL Certificate NOTE: If the Active Directory Server is set to authenticate the client during an SSL session initialization phase, you need to upload the DRAC 5 Server certificate to the Active Directory Domain controller as well.... 
    140Using the DRAC 5 With Microsoft Active Directory
fIn the Certificate Upload screen, perform one of the following 
procedures:
•Click 
Browse and select the certificate
•In the 
Va l u e field, type the path to the certificate.
gClick Apply.
Importing the DRAC 5 Firmware SSL Certificate
 NOTE: If the Active Directory Server is set to authenticate the client during an SSL 
session initialization phase, you need to upload the DRAC 5 Server certificate to the 
Active Directory Domain controller as well....
    Start reading Dell Drac 5 User Guide

    Related Manuals for Dell Drac 5 User Guide

    All Dell manuals