LDAP/AD Settings - discover attributes and configuration information panel options for configuring Lightweight Directory Access Protocol-based authentication on the Management Server host

Article:HOWTO77787  |  Created: 2012-08-24  |  Updated: 2012-08-24  |  Article URL http://www.symantec.com/docs/HOWTO77787
Article Type
How To

Product(s)

Subject


LDAP/AD Settings - discover attributes and configuration information panel options for configuring Lightweight Directory Access Protocol-based authentication on the Management Server host

This topic applies to Veritas Operations Manager 5.0.

Use this wizard panel to start configuring Lightweight Directory Access Protocol (LDAP)based authentication on the primary authentication broker.

Table: LDAP/AD Settings - discover attributes and configuration information panel options

Field

Description

Server Information

Server Name (Mandatory)

Fully-qualified host name or IP address of the LDAP server.

If a secure session is configured with the LDAP server using SSL certificates, you must enter the fully-qualified hostname that matches with the fully-qualified hostname in the LDAP server certificate.

Port (Mandatory)

Number of the port on which the LDAP server is configured to run.

By default, this field displays the port number as 389. You can edit this port number, if required.

This server requires me to log on (Optional)

Select this check box if the anonymous operations are disabled on the LDAP server and a bind user ID is required to proceed with configuring the LDAP-based authentication.

Bind User Name/DN

The complete Distinguished Name (DN) of the user that is used to bind to the LDAP server.

If the LDAP server being used is Active Directory (AD), you can provide the DN in any of the following formats:

  • username@domainname.com

  • domainname\username

For example, You can provide the DN as Administrator@enterprise.domainname.com ENTERPRISE\Administrator

For RFC 2307 compliant LDAP servers, specify complete bind DN.

For example, cn=Manager,dc=vss,dc=symantec,dc=com

The LDAP or the AD administrator can provide you the bind user name that you can use.

Password

Password that is assigned to the bind user name that you use.

Use Secure Sockets Layer

Select this check box to use the Secure Sockets Layer (SSL) certificates to establish a secure channel between the authentication broker and the LDAP server.

Certificate location

Location of the trusted root CA certificate of the vendor that issued the LDAP server certificate.

Query Information

User Name (Mandatory)

User name that the system use to detect the LDAP server-related settings.

Note:

You must ensure that the user name that you enter does not contain any special characters. For example, you must not enter the special character '(' in this field.

The system determines the search base based on the user name that you specify in this field.

Group Name

Name of the user group that the system use to detect the LDAP server-related settings.

Veritas Operations Manager displays this field if the user does not belong to any user groups.

Note:

Make sure that the group name that you enter does not contain any special characters. For example, you must not enter the special character '(' in this field.

The system determines the search base based on the group name along with the user name that you have specified.

See Configuring Lightweight Directory Access Protocol-based authentication on Veritas Operations Manager 5.0 Management Server


Legacy ID



v32604288_v71172234


Article URL http://www.symantec.com/docs/HOWTO77787


Terms of use for this information are found in Legal Notices