Active Directory Configuration | Cyclades AlterPath BladeManager

Active Directory Configuration

group_compat: nis

Active Directory Configuration

To configure the BladeManager to use Active Directory for authentication, follow the steps below:

1.During First Time Configuration (see Chapter 4: Web Configuration), select ldap when prompted for the desired authentication method.

2.Connect to the BladeManager using SSH and login as root.

3.Configure /etc/ldap.conf as follows:

host 172.20.98.150

base dc=qalab,dc=cyclades,dc=com,dc=br

binddn cn=Adminitrator,cn=Users,dc=qalab,dc=cyclades, dc=com,dc=br

bindpw qa

pam_login_attribute sAMAccountName pam_password ad

a.On line 3 (see example above), add the lines as shown in boldface, using your own values.

b.Delete the uri statement (already deleted from line 3 in the example) which is used in traditional LDAP, but not needed in Active Directory.

4.Type in saveconf to save your configuration.

5.Reboot the BladeManager.

Regarding /etc/ldap.conf, the host and base items are exactly the same when configuring traditional LDAP.

binddn is the distinguished name (dn) to bind with, and is composed by the common name (cn) plus the distinguished name of the search base, and bindpw is the password in the active directory server which corresponds to the common name given in the binddn statement.

pam_login_attribute and pam_password must be set to exactly the values shown above, thus informing the active directory server what kind of authentication is taking place.

AlterPath BladeManager Manual

5-15

Image 177

Cyclades AlterPath BladeManager user manual Active Directory Configuration

Contents

AlterPath BladeManager Page Table of Contents BladeManager Web Access BladeManager Web Administration Table of Contents Table of Contents Advanced Configuration Appendix a Hardware Specifications Viii Audience Before You BeginDocument Organization Chapter Title Description Form/Window Labels Typographical ConventionsHypertext Links Form/Window Levels Naming Conventions Command Line Syntax Where outlet lists format is Before You Begin AlterPath BladeManager Manual Chapter Introduction Connectivity and Capacity Key Features Consolidated Views and Blade Access Centralized AuthenticationSingle Point Security Gateway Simple and Easy Web User Interface Prioritized Triggers & Alarms One-Click Access to Blades and SwitchesCentralized Data Logging System Log File Compression and Rotation Other Alarm Features Backup, Restore, and Replicate User DataBlade Wizard Chassis, Blades, and User Group Management Command Line Interface CLI Exhaustive ReportingMultiport Ethernet Cards Deploying the BladeManager Introduction AlterPath BladeManager Manual Product Installation Checklist BladeManager Installation Rack Mounting Guidelines Rack Mounting Guidelines BladeManager Installation Rack Mounting Guidelines BladeManager Installation Rack Mounting Guidelines BladeManager Installation Rack Mounting Guidelines BladeManager Installation Major Components of the BladeManager Installation Safety Guidelines System Reliability GuidelinesStatic-Sensitive Devices Installing DIMMs Installation Procedures BladeManager Installation Installing a Hard Disk Drive Installing a Simple-Swap Serial ATA Hard Disk DriveGo to Completing the Installation, this chapter Installing a Scsi Hard Drive Installing an Adapter BladeManager Installation Installation Procedures BladeManager Installation Completing the Installation Connecting the Cables BladeManager Controls, LEDs, and Power Updating the Server Configuration Front LEDs/Buttons Function Power-control button Reset buttonRear LEDs Function Switching On the Server BladeManager Power Features Switching Off the BladeManager Requirement Description Pre-Configuration Requirements Configuring the COM Port Connection and Logging BladeManager Installation AlterPath BladeManager Manual Alarms User Interface OverviewMenu Option Function Using the Web Interface as a Regular User User Interface Overview Sorting a List Form by Column/Field Name General Screen Features Search and Filter Functions Alarms Alarm Logs Responding to an alarmAlarm List Form Fieldname Definition Viewing the Alarm Detail Form Fieldname / Button Definition Form brings up the Alarm Detail form Assigning a Ticket to a User Viewing Alarm or Console Logs Viewing the Blade List Blades CLI, KVM, VM, ON, OFF Column or Button Definition Name Connecting to a Blade Console Multiple Users and Read/Write AccessViewing a Blade or Switch Consoles Detail Form Field Name Definition Console NamePort Consoles Notify Form Consoles Access Form Consoles Groups Form Log Type Definition Logs Viewing the Logs Access Logs Event Logs Data Buffer Profile User’s Profile Disabled Changing Your Password Viewing the User Access FormViewing the User Groups Form User list box System displays the User Group form List box to the Selected security profiles list Viewing the Security Form Security profile list box BladeManager Web Administration Operational Modes Configuration Process Flow Running the First Time Configuration Wizard First Time Configuration Wizard Password Resetting Configuration to Factory Settings ===================================================== First Time Configuration Wizard An Example First Time Configuration Wizard Hostname Configuration Must Follow RFC Standard Setting the Authentication Method Encrypted version Connecting to the Web Interface Forms Summary BladeManager Web Interface Admin Mode Menu Option Forms and their Functions Menu Option Forms and their Functions Menu Option Forms and their Functions Parts of the Web Interface Logging Into the BladeManager Web Interface BladeManager Web Interface Admin Mode Sorting, Filtering, and Saving a List Form Verifying Error Messages Using the Form Input FieldsChassis Management Action Forms Used Blade Wizard Save & Create Blades Switch 1 through Switch Fieldname / Element Definition Chassis Devices List Form Adding or Editing a Chassis Filter by buttonSearch Chassis Management Devices Details Form Fields and Elements Intdhcp or static Intdhcp IP Mode When to use this mode Using a Dhcp Server and Selecting the Correct IP ModeFunction of the Status Field Static To select one or more groups to access a chassis Selecting the Groups to Access a Chassis Proxies Proxy TypesProxy Type Function Proxy Type Function Configuring the Proxy Configuring the Chassis Switch Verifying your Proxy SettingConfiguring Ports to be Proxied From the menu, go to Devices Details Groups Switch Mode intdhcp or static Two Methods of Blade Configuration Screen/Form Name Function Running the Blade Wizard Connection Method BladeManager Web Administration Groups Unconfigured Consoles Confirmation Edit Configuration Consoles List Form Configuring Blades Manually through the Menu Deleting a Device Connecting to a Device Alarm Trigger Deleting a Device from a GroupDeleting a Device Group Viewing the Alarm Trigger List Alarm Trigger ManagementCreate Alarm and Priority Form Function Forms Used Creating an Alarm Trigger Field Name Definition Blades / Switches Deleting an Alarm TriggerUsing the Logical and in the Alarm Trigger Expression Connection Applies to Use this connection to Type Consoles List Form OFF Viewing the Console List Adding a Serial Console Blades / Switches 10Consoles Detail Form Fieldnames and Elements Adding a Switch Console Selecting Users to Access the Console Selecting Users to be Notified Assigning the Console to a Group Deleting a Console from a Group Log Rotation Connecting to a ConsoleInitiating Log Rotation Deleting a Console Group Users Setting Log Rotation in Auto Mode Adding a User User List form Username Fieldnames Definition Authentication e.g., LDAP, RADIUS, it is Selecting Consoles for a User Selecting User Groups for a User Deleting a User Deleting a User from a GroupDeleting a User Group Setting the Local Password Setting Up Local AuthenticationSetting a User’s Security Profile Creating a Group Groups Groups Assigning a Security Profile to a User Group Deleting a Group Security Profiles Security Profile List Status Enabled , Disabled or DeletedForm Title Use this form to Column Name Definition Adding or Editing a Security Profile Security Profiles Source IP Field Name Function Security Profiles LAN ITF Selected LAN ITF Conditions list box right Security Profile Date/Time Configuring Authorization Authorized Action Function Go to Security Profiles Authorization Deleting a Security Profile Backing Up User DataData Type Definition Backup and Restore Scenarios System Recovery Guidelines Responding to the Warning Message BladeManager Database Transaction Support Info / Reporting Changing the Default Configuration Info / Reporting Page Advanced Configuration Command Use this command to Shell CommandsWorking from a CLI Logging Connecting Directly to Ports Copying and Pasting Text within the Console Applet WindowMenu Option Use this option to CLI Sample Command Line Interface Keys Command CLI Commands Setboot sets the network boot utility. For example Set Commands Setcons sets console connection. For example Date sets the date and date format. For example More Ethernet Subinterfaces Yes, No or Setsmtp sets the email server’s IP address. For example Changing the Escape Sequence Re-defining the Interrupt Key Changing the Session TimeoutChanging the Number of Lines in the SSH Applet Edit the file /opt/tomcat/apm/applet.conf Enabling Telnet Edit /etc/xinetd.conf as follows service telnet File to edit /etc/nsswitch.conf NIS ConfigurationWhere Parameter Definition Status Meaning User Authentication Active Directory Configuration Disabling Http to Use Only Https FirmwareAdding Firmware Upgrading the Apbm Firmware Backing Up User Data Backup and Restore Commands Where Log Files are ArchivedManaging Log Files Where Backing Up Log Files to a Remote Server Restoring Your Configuration Changing the Database ConfigurationRestconf config.tgz.old Maxconnections in my.cnf Installing SSL Certificates Enter OpenSSL commandParameter Description Submit the CSR to the CA Upon receipt, install the certificate Keytool -import -alias tomcat -file jcertfile.cer Advanced Configuration Alterpath BladeManager Manual Authentication Access Control ListBios ACL Break Signal BootBlade Server Checksum Console ClusterConsole Port DNS Server Ethernet Escape SequenceFlash Flow Control In-band Network Hot-SwapManagement IP Address KVM Parity Network Mask Pcmcia Proxy ARP Root AccessRouting Table Secure Shell SSH Subnet Mask Stop Bit Terminal Server Telnet Rack Height Unit UDP Appendix a Air Temperature BladeManager Hardware Specifications BladeManager Hardware Specifications