Tripp Lite B022-U08-IP owner manual LDAP/S Server Configuration, Install the Windows Support Tools

Page 46

7. Administration (continued)

7.3.4ANMS (continued)

8.In the Search DN field, set the distinguished name of the search base (i.e. the domain name where the search starts for the user name). Note: If the Enable Authorization checkbox is not checked, this field must include the entry where the KVM Admin Group is created. Consult the LDAP/S administrator about the appropriate entry for this.

9.In the Admin Group field, key in the group name for KVM administrator accounts. Note: If the Enable Authorization checkbox is not checked, this field is used to authorize accounts that are logging in. Accounts that are in this group have full access rights to the KVM. Accounts that are not in this group have user access rights to the KVM (See the User Management section of this manual for details on account permissions). Consult the LDAP/S administrator about the appropriate entry for this.

10.On the LDAP server, set the access rights for each user (The following sections describe how to configure LDAP/S for use with the KVM switch).

LDAP/S Server Configuration

To allow authentication and authorization via LDAP or LDAPS, the active directory’s LDAP Schema must be extended so that an extended attribute name for the KVM – permission – is added as an optional attribute to the person class.

Note: Authentication refers to the identity verification of the person logging into the KVM switch, whereas Authorization refers to the assigning of device permissions.

In order to configure the LDAP server, you will have to complete the following procedures:

Install the Windows Support Tools

Install the Active Directory Schema Snap-In

Extend and Update the Active Directory Schema

Each of these procedures is described in the following sections:

Install the Windows Support Tools

1.On your Windows server CD, open the Support Tools folder.

2.In the right panel of the dialog box that comes up, double click SupTools.msi.

3.Follow along with the Installation Wizard to complete the procedure.

Install the Active Directory Schema Snap-In

1.Open a Command prompt.

2.Key in regsvr32 schmmgmt.dll to register schmmgmt.dll on your computer.

3.Open the Start menu. Click Run and key in mmc /a. Click OK.

4.In the File menu of the screen that appears, click Add/Remove Snap-in, and then click Add.

5.Under Available Standalone Snap-ins, double click Active Directory Schema, click Close and then click OK.

6.On the screen you are in, open the File menu and click Save.

7.When prompted where to save, specify the C:\Windows\system32 directory.

8.Key in the filename schmmgmt.msc.

9.Click Save to complete the procedure.

Extend and Update the Active Directory Schema – Create a New Attribute

1.Open Control Panel Administrative Tools Active Directory Schema.

2.In the left panel of the screen that comes up, right-click Attributes.

3.Select New Attribute.

4.A warning message appears. Click Continue to bring up the Create New Attribute dialog box.

5.Fill in the dialog box and click OK. The Common Name and LDAP Display Name fields can be populated as B022-U08-IP-AccessRight. The Syntax field should be Unicode String, the Minimum field should be set to 1, and the Maximum field to 255.

46

Page 45 Page 47
Image 46
Page 45 Page 47
Contents Model # B022-U08-IP Table of Contents User Notice Package ContentsFCC Information IntroductionSystem Requirements Supported operating systems are shown in the table, belowComponents General Safety Instructions InstallationRack Mounting Safety Instructions Grounding Single Stage InstallationRack Mounting Instructions Standard Rack MountingMulti-Stage Daisy-chain Installation Network Setup-IP Address ConfigurationIP Installer DNS server field is optional Installation KVM Operation Powering Off and RestartingLocal Console Login Sharing USB Peripheral DevicesLocal Console Port Access Key DescriptionPort Control Hotkeys Invoking the Hotkey ModeWhen Hotkey Mode has been invoked Other HotkeysComputer Keyboard/Mouse Reset Auto Scan ModeSkip Mode Hotkey Mode Invocation SequenceLogging Into the KVM over IP Hotkey Operation Hotkey Command DescriptionHotkey Summary Table Logging In via the AP Windows Client Web Browser and Non-Browser Remote Port Access Port Access via Remote OSD Icon DescriptionWindows XP / Server 2003 / Vista Mouse Synchronization ProceduresWindows Windows MERemote Auto Scan Video Settings Hotkey SetupConfiguring the Hotkeys Action Hotkey DescriptionVideo Auto Sync Gamma AdjustmentSetting Description Gray ScaleMessage Display Panel User List PanelCompose Panel Ctrl-Alt-DelLocal OSD Remote OSD AdministrationUser Local Console OSD ALLPort that is currently active Local Console OSD F4 Administration ADM Local Console Firmware Upgrade Firmware Upgrade Recovery Remote OSDRemote OSD Configuration Tab General Information User ManagementUser Management Permissions User Management Port AccessNetwork Access Ports NetworkAccess Rights AnmsInstall the Windows Support Tools Check the Enable Ldap Authentication checkboxAnms LDAP/S Configuration Install the Active Directory Schema Snap-InAdministration Permission Attribute Value Access Rights DescriptionCharacter Description Anms OpenLDAP Server OpenLDAP Server InstallationOpenLDAP Server Configuration \Program Files\OpenLDAPCustomizing the OpenLDAP Schema Ldap Data StuctureSecurity Default Webpage Name Using the New SchemaAnms Log Server Settings SecurityCustomization Working Mode Customization Firmware UpgradeCustomization Login Failures Customization Mouse Sync ModeWeb Management Interface Reset on ExitReset Default Values Customization I/OAccess Ports IP Address and DNS ServerIP Installer Settings Default Webpage NameRadius Settings LDAP/S Server Configuration Run Adsi Edit. Installed as part of the Support Tools Permission Attribute Value OpenLDAP Server OpenLDAP Server InstallationStarting the Open Ldap Server Log Server Settings Ldap Data StructureLogin Failure Client Timeout ControlPermissions Mouse Sync Mode Working ModeReset Backup Configuration / User Accounts Firmware UpgradeRestore Configuration / User Accounts Log Server ConfigureMenu Bar Help EventsOptions Log Server Main ScreenList Panel Event PanelSpecifications Specification B022-U08-IPMac Keyboard OSD Default SettingsKeyboard Emulation Sun KeyboardWarranty Registration FCC Notice, Class a
Related manuals
Manual 16 pages 37.5 Kb
Top Page Image Contents