Dell Drac 5 User Guide
Here you can view all the pages of manual Dell Drac 5 User Guide. The Dell manuals for System are available online for free. You can easily download all the documents as PDF.
Page 131
Using the DRAC 5 With Microsoft Active Directory131 Specify Server for Active Directory Configuration If you want to specify an LDAP, Global Catalog server, or Association Object (applicable only for Extended Schema) domain instead of using the servers returned by the DNS server to search for a user name, type the following command to enable the Specify Server option: racadm config -g cfgActive Directory -o cfgADSpecifyServer Enable 1 NOTE: If you use this option, the hostname in the CA certificate...
Page 132
132Using the DRAC 5 With Microsoft Active Directory To specify the Association Object, ensure that you also provide the IP or FQDN of the Global Catalog. NOTE: If you specify the IP address as 0.0.0.0, DRAC 5 will not search for any server. You can specify a list of LDAP, Global Catalog servers, or Association Objects separated by commas. DRAC 5 allows you to specify up to four IP addresses or hostnames. If LDAPS is not correctly configured for all domains and applications, enabling it may produce...
Page 133
Using the DRAC 5 With Microsoft Active Directory133 Configuring and Managing Active Directory Certificates To access the Active Directory Main Menu: 1 Expand the System tree and click Remote Access. 2Click the Configuration tab and click Active Directory. Ta b l e 6 - 9 l i s t s t h e Active Directory Main Menu page options. Configuring Active Directory (Standard Schema and Extended Schema) 1In the Active Directory Main Menu page, select Configure Active Directory and click Next. 2In the Active...
Page 134
134Using the DRAC 5 With Microsoft Active Directory 4Click the appropriate Active Directory Configuration page button to continue. See Table 6-11. 5To configure the Role Groups for Active Directory Standard Schema, click on the individual Role Group (1-5). See Table 6-12 and Table 6-13. NOTE: To save the settings on the Active Directory Configuration and Management page, you have to click Apply before proceeding to the Custom Role Group page. Table 6-10. Active Directory Configuration and...
Page 135
Using the DRAC 5 With Microsoft Active Directory135 Role GroupsThe list of role groups associated with the DRAC 5 card. To change the settings for a role group, click their role group number, in the role groups list. The Configure Role Group window displays. NOTE: If you click on the role group link prior to applying the settings for the Active Directory Configuration and Management page, you will lose these settings. Group NameThe name that identifies the role group in the Active Directory...
Page 136
136Using the DRAC 5 With Microsoft Active Directory Configure UsersEnables the user to allow specific users to access the system. Clear LogsEnables the user to clear the DRAC logs. Execute Server Control CommandsEnables the user to execute racadm commands. Access Console RedirectionEnables the user to run Console Redirection. Access Virtual MediaEnables the user to run and use Virtual Media. Te s t A l e r t sEnables the user to send test alerts (e-mail and PET) to a specific user. Execute Diagnostic...
Page 137
Using the DRAC 5 With Microsoft Active Directory137 Uploading an Active Directory CA Certificate 1In the Active Directory Main Menu page, select Upload Active Directory CA Certificate and click Next. 2In the Certificate Upload page, in the File Path field, type the file path of the certificate or click Browse to navigate to the certificate file. NOTE: The File Path value displays the relative file path of the certificate you are uploading. You must type the absolute file path, which includes the...
Page 138
138Using the DRAC 5 With Microsoft Active Directory Enabling SSL on a Domain Controller When the DRAC 5 authenticates users against an Active Directory domain controller, it starts an SSL session with the domain controller. At this time, the domain controller should publish a certificate signed by the Certificate Authority (CA)—the root certificate of which is also uploaded into the DRAC 5. In other words, for DRAC 5 to be able to authenticate to any domain controller—whether it is the root or the...
Page 139
Using the DRAC 5 With Microsoft Active Directory139 4In the Console 1 (MMC) window, click Fil e (or Console on Windows 2000 machines ) and select Add/Remove Snap-in. 5In the Add/Remove Snap-In window, click Add. 6In the Standalone Snap-In window, select Certificates and click Add. 7Select Computer account and click Next. 8Select Local Computer and click Finish. 9Click OK. 10In the Console 1 window, expand the Certificates folder, expand the Pe r s o n a l folder, and click the Certificates folder....
Page 140
140Using the DRAC 5 With Microsoft Active Directory fIn the Certificate Upload screen, perform one of the following procedures: •Click Browse and select the certificate •In the Va l u e field, type the path to the certificate. gClick Apply. Importing the DRAC 5 Firmware SSL Certificate NOTE: If the Active Directory Server is set to authenticate the client during an SSL session initialization phase, you need to upload the DRAC 5 Server certificate to the Active Directory Domain controller as well....