Belkin 5000HQ user manual External authentication Ldap, DNS setting in Ldap mode

Page 50

Settings – Applications

Table of Contents

sections 1

2

3

4

5

6

7

8

9 10 11 12 13 14 15 16 17 18

19

20 21

9..2..2 External authentication (LDAP)

LDAP (Lightweight Directory Access Protocol) is a standard protocol for accessing information in a directory.

LDAP defines processes by which a client can connect to an X.500- compliant or LDAP-compliant directory service to add, delete, modify, or search for information, provided the client has sufficient access rights to the directory. For example, a user could use an LDAP client to query a directory server on the network for information about specific users, computers, departments, or any other information stored in

the directory.

Note! OmniView IP 5000HQ supports Windows 2003 and Windows 2008 Active Directory LDAP Authentication.

9..2..2..1 OmniView IP 5000HQ in external authentication (LDAP) mode

In external authentication (LDAP) mode, OmniView IP 5000HQ deletes all users created before in local authentication mode. New users can only be imported from a Windows 2003 or Windows 2008 Active Directory.

OmniView IP 5000HQ will validate all user credentials against the external LDAP server only.

Only the “admin” account remains as a “backdoor” account. This user has OmniView IP 5000HQ local access. Admin account is allowed to manage OmniView IP 5000HQ with “Administrator” access privileges. However, “admin” is not permitted to connect to targets. This account will allow changing OmniView IP 5000HQ to local authentication mode at any time.

There is no direct access to any IP device. OmniView IP 5000HQ will act as a gateway.

Since the OmniView IP 5000HQ user accounts are kept in the local database, some of the local accounts might not have related LDAP objects (e.g., some users’ accounts might migrate to another LDAP path). To clean the local database from those ghost accounts that will never pass LDAP authentication, OmniView IP 5000HQ provides the customers with the manual synchronize operation.

User groups will not be deleted and will be managed locally after its import.

When changing OmniView IP 5000HQ to local authentication mode, all the users appear as “inactive.” To reactivate the users, the administrator must explicitly provide each account with a local password.

9..2..2..2 DNS setting in LDAP mode

Important! The correct DNS setting is vital for the successful configuration of the OmniView HQ in LDAP mode. You set the HQ DNS settings in the “Settings / Unit Maintenance / Network” tab. See the “Network tab” section on page 95.

OmniView IP 5000 HQ

46

Page 49 Page 51
Image 50
Page 49 Page 51
Contents OmniViewIP* 5000HQ Table of Contents Settings Attached Devices Accessing. Targets Administrator Configuring Access Services for Individual TargetsSettings Applications Configuring Access Services IntroductionAccessing the System as a User Unit MaintenanceKey features IntroductionIntroduction Pre-Installation Guidelines Pointer tabAdding user-defined Access Services Pre-Installation GuidelinesAccess Services details Understanding the System An Overview Figure below shows a typical OmniView IP 5000HQ applicationCreating targets Understanding the System An OverviewForming users into groups Forming targets into sets Associating a user group with a target setAccess Services Same user in different groupsUnderstanding the System An Overview Setting Up the System Enabling HQ for OmniView IP 5XXXG seriesOmniView IP 5000HQ Manager’s default IP address Setting Up the SystemConnecting the OmniView IP 5000HQ Manager Changing the OmniView IP 5000HQ Manager network parametersDisplaying the OmniView IP 5000HQ Web Interface DevicesDisplaying the OmniView IP 5000HQ Web Interface Menu sectionCreating Users UsersCreating Users General tabUser Group tab Removing users from a groupAccess Permissions tab New User Access Permissions tabSaving a user Deleting a userCreating a user group Creating a New User Group Members tabAllowed Services tab Creating New Users Access Permissions tabSaving the new group Deleting a user groupConfiguring Targets List of existing targets in the systemDefault Access Service Configuring TargetsAccess Services tab On the New Target page, click Assignment is removed Assigning power outlet to target PDU tabClick and the outlet number will appear Target Sets tab Current Target Sets tabCreating a target set Saving the targetDeleting targets Saving the target set Current Target sets in the systemDeleting a target set Deleting a target setStatus ManagementDevices Management 10 11 12 13 14 15 16 17 Other Devices Other Devices PDUFollowing commands can be performed from the HQ interface Other Devices Console Server Current console servers in the systemAdding new console servers Serial tab Configuring the KVM IP devices in the OmniView IP 5000HQ Advanced buttonLow PerformanceHigh MediumConfiguring KVM over IP KVM Ports tab KVM Ports tabNetwork tab KVM-over-IP Device Network tabDevice discovery Saving the KVM-over-IP device configuration changesDeleting KVM-over-IP devices Settings Applications Settings Access ServicesSettings Applications Belkin OmniView IP KVMAccount policy Account policyStandard policy password Password policyStrict policy password Account blockingDNS setting in Ldap mode External authentication LdapOmniView IP 5000HQ in external authentication Ldap mode Ldap settings Importing usersUsers must be members of groups in order to be shown Synchronization Synchronization does two thingsOperating OmniView IP 5000HQ in external authentication mode Global settingsSet mouse and performance from KVM/IP session Default power commandOmniView IP 5000HQ session idle time-out Items PerUploading a new PDU model Settings Attached Devices10..1 PDU Settings Attached Devices KVM switchesUploading a new KVM switch Console serverUploading a new serial console model General note about application paths Configuring Access Services IntroductionAccess Services default values Configuring Access Services Introduction Belkin Serial Console Server11..1..3 Web 11..1..4 ILOWeb mode ILO Web modeRDP Client mode Login MethodWeb mode default 11..1..5 RDPRDP RDP Client mode 11..1..6 SSHVNC VNC Client mode 11..1..7 VNCDescription Description of the Access Service VNC Telnet VMware Server VMware ServerNew Access Services New ServiceConfiguring Access Services Introduction Configuring Access Services for Individual Targets TargetsConfiguring Access Services for Individual Targets Single Port Console Server12..1..2 Web 12..1..3 ILOWeb mode RDP Web mode 12..1..4 RDP12..1..5 SSH 12..1..6 VNC VNC VNC ClientWeb mode Telnet VMware Server Power management column Accessing Targets AdministratorAccess page columns Name columnAccessing a target via KVM-over-IP remote session Accessing Targets AdministratorMore Access Services column Status columnNot default Access Service Choose to take over or view only or cancelSwitching to a different server Taking over a busy remote sessionExiting the OmniView IP 5000HQ system Accessing the System as a User Power columnAccessing the System as a User Connecting to a targetChange Password window Accessing a KVM-over-IP Device Directly Maintenance of the System BackupRestoring database backup Maintenance of the SystemBackup elements Resetting OmniView IP 5000HQ configuration Restore SettingsRestoring OmniView IP 5000HQ to factory default settings Firmware upgrade Upgrading the KVM-over-IP device firmware Firmware upgradeReplication Connecting the secondary unit to the networkConfiguring the secondary unit Configuring the primary unit 16. ..4 Promoting a secondary unit to a standalone unitReconfiguring the primary and secondary units Checking the secondary unit Primary unit and secondary unit troubleshootingRedoing the secondary and primary unit configuration Event log Event LogAccess, System, or Configuration tabs Drop-down search menusUnit Maintenance Date & Time tabUnit Maintenance Power Control tabAbout AboutGeneral Troubleshooting Cannot log in to the OmniView IP 5000HQ General TroubleshootingLegacy KVM port switching does not occur Technical Specifications DimensionsTechnical Specifications Weee complianceF1DP101C InformationFCC Statement CE Declaration of ConformityInformation How state law relates to the warranty 104Belkin International, Inc Belkin B..V
Top Page Image Contents