c.Perform an LDAP Bind with the Auth DN and Password, if one is specified. Any errors encountered are displayed at the top of the window.

When finished, click Next Step to display User Mapping.

User mapping

A primary function of the LDAP Provider is to take a username (like jdoe) and password, and verify that the username maps to an entry in the LDAP server, and that the user's LDAP entry along with their password can be used to authenticate to the LDAP directory.

The application gives you two ways to map usernames to LDAP entries: an easy DN Builder (essentially a DN template), and a traditional search-based mapping configuration.

DN Builder

In some LDAP deployments, all users reside in a single, flat container (such as

OU=people,DC=example,DC=com), and all users are named with a common naming attribute (such as UID). In this case, it is easier to use the DN Builder to configure the User Mapping. To map a username such as jdoe to an LDAP entry of UID=jdoe,OU=people,DC=example,DC=com, type UID into the template left field, and OU=people,DC=example,DC=com into the right.

An example DN is shown below the Template fields in the form of

UID=${username},OU=people,DC=example,DC=com. This shows you what the resulting username map will be, where the string "${username}" is replaced with the username entered, when a user attempts to login.

Search

The traditional method of mapping a username to an LDAP entry is to search for the username as a unique value of the entry that represents the user. For example, ActiveDirectory deployments often populate an attribute called sAMAccountName with the username. Other directory deployments might populate the UID attribute with the username.

Enter the DN of the tree branch that is hierarchically above your user entries (for example, OU=people,DC=example,DC=com). If you previously entered a Default Base DN, you can select it from the drop-down list.

For the search filter, you can add one or more attributes to the Search Attributes field and a search filter is automatically created. For example, if your user entries have a UID attribute that holds their unique username, typing UID into the Search Attributes field produces a standard LDAP search filter of (UID=${username}).

If you need a specialized search filter, you can edit it in the Search Filter field. Use the radio buttons to toggle between entering attributes and editing the search filter.

The special token "${username}" is replaced with the name the user is attempting to log in with when the HP IO Accelerator Management Tool performs the authentication.

The Scope should normally be set to Subtree. It can be set to One Level if the users are all in a single container.

Click Next Step to proceed to Role Mapping.

Adding and editing LDAP providers 27

Page 27
Image 27
HP c-Class manual User mapping

c-Class specifications

The HP c-Class is a series of high-performance blade servers designed to optimize space and improve data center efficiency. These compact systems exemplify HP's commitment to delivering powerful computing solutions that are both scalable and manageable. The c-Class offers an array of features, technologies, and characteristics that cater to diverse business needs, ensuring organizations can keep up with the demands of modern computing environments.

At the heart of the HP c-Class architecture is its innovative blade technology, enabling multiple server blades to reside within a single enclosure. This not only conserves physical space in the data center but also reduces energy consumption, ultimately lowering operational costs. The c-Class enclosure supports a variety of HP server blades, which can be tailored to meet specific workload requirements.

One of the standout features of the HP c-Class is its high-density design, allowing organizations to run numerous processors and substantial memory within a compact footprint. The system supports the latest Intel and AMD processors, offering exceptional processing capabilities. With a modular design, businesses can easily scale up resources by adding more blades as demand increases.

In terms of connectivity, the HP c-Class integrates advanced networking options. It includes embedded Ethernet and Fibre Channel switches, facilitating seamless data transfer and communications while ensuring minimal latency. The built-in redundancy features enhance reliability, making it a robust solution for critical applications.

Power and thermal management are key characteristics of the HP c-Class, with Energy Star compliance underscoring its efficiency. Intelligent power management tools allow for real-time monitoring and optimization, further contributing to reduced energy costs.

HP's Integrated Lights-Out (iLO) technology is another significant advantage. This tool provides remote management capabilities, giving IT personnel the ability to monitor the health and performance of the server blades from anywhere. The iLO feature simplifies troubleshooting and enhances system uptime.

Security features are also woven into the fabric of the HP c-Class. With options for advanced authentication and secure boot processes, organizations can protect their critical data and maintain compliance with local regulations.

In summary, the HP c-Class blade server series delivers a compelling combination of high performance, scalability, and manageability. Its advanced technologies cater to a wide range of applications, making it an ideal choice for businesses seeking to enhance their IT infrastructure while keeping costs in check. The c-Class is not just a product; it represents a strategic approach to efficient, high-capacity computing.