Manuals
/
Schneider Electric
/
Computer Equipment
/
Switch
Schneider Electric
AP561x manual Enable LDAP Authentication, APC by Schneider Electric
Models:
AP561x
1
16
26
26
Download
26 pages
30.42 Kb
13
14
15
16
17
18
19
20
<
>
Click on Configure
Settings Used in this Lab
Enable LDAP Authentication
Authorization
Log into the Switch
Page 16
Image 16
Enable LDAP Authentication
Click on Authentication under Appliance in the Configuration Menu
APC by Schneider Electric
Page 15
Page 17
Page 16
Image 16
Page 15
Page 17
Contents
LDAP Implementation AP561x KVM Switches
Does not require LDAP Schema to be touched
Uses existing Schema Attribute field to store configuration setting
LDAP Implementation
Allows easy implementation
IP KVM authentication levels
Basic
Attribute
Group
Settings Used in this Lab
LDAP Lab Layout
Server1 Server2 KVM IPKVM1Server3
LDAP Server
OBWI Client
Synchronize Server Module names to AD Computer Object names
Name the Server Modules via the Local Port OSD
APC by Schneider Electric
Active Directory Tasks
StartProgramsAdministrative ToolsActive Directory Users and Computers
2. Select New Organizational Unit
queries instead of using the Admin account
This is a special user account specifically for LDAP
Create User to Browse the Directory
APC by Schneider Electric
2. Choose New Group
Create two groups for IP KVM switch administrators and users
1. Right-click IPKVM OU
APC by Schneider Electric
NOTE In a production environment, groups in the Active Directory IPKVM OU would match the organizations hierarchy, usually by function, geography, or a combination
Add the users and
Server Modules to the appropriate groups that associate them
2. Click Properties
5. Click Object Types 6. Select Computers and Users
Create Computer Object in AD for the IP KVM Switch
Log into the Switch
APC by Schneider Electric
From the Configure screen, select SNMP and name the switch IPKVM1
Name the Switch
APC by Schneider Electric
Click on Authentication under Appliance in the Configuration Menu
Enable LDAP Authentication
APC by Schneider Electric
Check the Use LDAP Authentication box. On the Server Parameters tab, enter the IP address of the Primary Server 192.168.5.100 domain controller
Configure LDAP Search Parameters
Leave Query Parameter at Basic
APC by Schneider Electric
Test the basic LDAP Authentication
Very basic Quick to set up All users have administrator rights
Basic Summary
Ideal for smaller customers
APC by Schneider Electric
Group Based Authentication
Click on Configure
Query Mode IP KVM Switch and Group Attribute for Query Mode Server
Change LDAP Query to Group
Enter the Group Container IPKVM and test again
APC by Schneider Electric
Group Summary
Highly granular security Port level control
Attributes set to groups rather than individual users Hugely scalable
Ideal for Enterprise customers
Conclusion
APC by Schneider Electric
