Avaya DECT R4 Installation And Administration Manual page 125

Admin Group RID
Auditor Group RID
3. Click OK.
Kerberos Client configuration
The location of the Windows server must be configured locally on each client similarly to the
Kerberos server. The client configuration must be done on the Kerberos server as well so that it
can also join the Windows domain. To configure the clients do the following:
1. Select General > Admin.
2. Go to the Authentication Servers section.
3. In the Realm/Domain field, enter the name of the trusted Windows domain.
4. In the Address field, enter the IP address of the Windows server. The Port field is filled
out automatically.
5. Click OK.
Logging in using Kerberos cross-realm authentication
1. Make sure that secure HTTPS protocol is used when logging in.
2. Log in on the client using a Windows server account. When prompted for user name, enter
the name of the Windows domain in front of the user name, separated by a backslash in
the following way: DOMAIN\username. The domain name must be in capital letters.
Avaya DECT R4 - Installation and Maintenance Guide
Specify the Relative Identifier (RID) of a Windows group
with administrator rights. The RID is the last part of the
Security Identifier (SID) of a group.
Determine the SID of a group by entering the following
in the Windows command line:
whoami /groups
This command displays the group information of the
user logged in to the Windows domain.
Specify the Relative Identifier (RID) of a Windows group
with auditor rights. The RID is the last part of the
Security Identifier (SID) of a group.
Determine the SID of a group by entering the following
in the Windows command line:
whoami /groups
This command displays the group information of the
user logged in to the Windows domain.
Operation
125
02/2016