Chapter 4: Web Interface Operations

47

 

 

Configuring LDAP

LDAP is a vendor-independent protocol standard used for accessing, querying and updating a directory using TCP/IP. Based on the X.500 Directory Services model, LDAP is a global directory structure that supports strong security features including authentication, privacy and integrity.

If individual user accounts are stored on an LDAP-enabled directory service, such as Active Directory, you can use the directory service to authenticate users. The default values given for the LDAP search and query parameters are defined for use with Active Directory.

The settings made in the OBWI let you configure your authentication configuration parameters. The software sends the username, password and other information to the appliance, which then determines whether the user has permission to view or change configuration parameters for the appliance in the OBWI.

NOTE: Unless otherwise specified, the LDAP default values should be used unless Active Directory has been reconfigured. Modifying the default values may cause LDAP authentication server communication errors.

LDAP Overview parameters

On the LDAP Overview page in the OBWI, you can configure the LDAP authentication priority and the parameters that define LDAP server connection information.

LDAP authentication priority

In the LDAP Priority section of the LDAP Overview page, you can disable LDAP, or you can set the authentication priority by choosing whether local authentication or LDAP authentication should happen first.

To configure LDAP authentication priority parameters:

1.Select Appliance - Appliance Settings - User Accounts - LDAP Accounts - Overview.

2.Select either LDAP Disabled, LDAP before Local or LDAP after Local for the LDAP Priority.

3.Click Save.

LDAP servers

The Address fields specify the host names or IP addresses of the primary and secondary LDAP servers. The second LDAP server is optional.

The Port fields specify the User Datagram Protocol (UDP) port numbers that communicate with the LDAP servers. The default value is 389 for non-secure LDAP and 636 for secure LDAP (LDAPS). The default Port ID is automatically entered by the software when an access type is specified.

The Access Type radio buttons specify how a query is sent to each LDAP target device. When using LDAP, all usernames, passwords and other information sent between an appliance and LDAP server are sent as non-secure clear text. Use LDAPS for secure encrypted communication between an appliance and LDAP server.

Page 59
Image 59
Avocent 3050, 3100, 3200 manual Configuring Ldap, Ldap Overview parameters, Ldap authentication priority, Ldap servers

3200, 3050, 3100 specifications

The Avocent 3100 and 3050 are leading models in the KVM (Keyboard, Video, Mouse) over IP technology space, designed to provide robust and efficient server management for data centers and corporate environments. These units are part of Avocent's renowned portfolio of management solutions aimed at enhancing IT operations and accessibility.

One of the standout features of both the Avocent 3100 and 3050 is their ability to remotely manage servers, allowing IT administrators to connect to multiple machines from virtually anywhere with an internet connection. This remote capability is essential for reducing downtime as it permits troubleshooting, configuration, and even rebooting of systems without the need for physical presence in the server room. This is especially beneficial for businesses with data centers located in various geographic regions.

Both models possess high-definition video support, with resolutions up to 1920x1200, ensuring that administrators can view critical system interfaces clearly. The advanced video technologies present in these units facilitate seamless integration with high-resolution displays, maximizing the efficiency of server management tasks.

User friendliness is another hallmark of the Avocent 3100 and 3050. They come equipped with a straightforward web-based interface that streamlines the administrative process. This intuitive design allows users to quickly navigate through system settings and configurations, making it easy for even less experienced staff members to manage resources effectively. Additionally, these devices support multiple languages, accommodating diverse teams across global operations.

Security is paramount in any IT management tool, and Avocent has prioritized this by integrating robust security protocols. Both models support the use of SSL encryption, secure access controls, and user authentication methods, ensuring that sensitive data and system integrity are protected from unauthorized access.

The hardware characteristics of these units also reflect durability and reliability. They are built with quality components to ensure longevity in continuous operating environments common in data centers. Energy-efficient designs contribute to lower operating costs, aligning with modern sustainability goals.

In summary, the Avocent 3100 and 3050 are advanced KVM over IP devices that combine high-definition video capabilities, user-friendly interfaces, and strong security measures, making them invaluable tools for IT professionals managing complex server environments. Their robust engineering guarantees prolonged performance, ultimately driving business efficiency and success in an increasingly digital landscape.