For example, in an exi st ing Active Directory set up, a group of users may be part of the “UPS Admin” and
“Router Admin” groups. On the console server, these users will be required to have access to a group
“Router_Admin”, with access to port 1 (connected to the router), and another group “UPS_Admin”, with
access to port 2 (connected to the UPS). Once LDAP is setup, users t hat are members of each group will
have the appropriate permissions to acc ess the router and UPS.
Currently, the only LDAP directory service that supports group provisioning is Mic rosoft Active Directo ry.
Support is planned for OpenLDAP at a later tim e.
To enable group inform ation to be used with an LDAP server:
Complete the fields for standard LDAP aut hentication including LDAP Server Addres s, Serv er
Password, LDAP Base DN, LDAP Bind DN and LDAP User Name Attribute
Enter membe rOf for LDAP Group Membership Attribute as group membership i s cu rrently only
supported on Acti ve Directory servers
If required, enter the group informatio n for LDAP Console Server Group DN and/or LDAP
Administration Group DN
A user must be a member of the LDAP Consol e Server Group DN group i n order to gain access to the
console and user int erf ace. For example, the user must be a member of ‘My Group’ on the Active Server
to gain access to the console server.
Additionally, a use r must be a member of the LDAP Administration Grou p DN in order to gain
administrator access to the console server. For ex ample, the user must be a member of ‘AdminGroup’ on
the Active Server to receive admini st rat ion privileges on the console server.
Click Apply.
Ensure the LDAP se rvice is operational and gr oup names are correct within the Active Directory
_____________________________________________________________________
724-746-5500 | blackbox.com Page 173