Dell PS-M4110 User Manual page 116

Firmware version 4.3

Hide thumbs Also See for PS-M4110:

Manual (22 pages)

Hardware owner's manual (60 pages)

Installation manual (70 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

Table of Contents

provides an administrator maximum flexibility over the different combinations of users, RAC privileges, and RAC devices

on the network without much complexity.

When there are two CMCs on the network that you want to integrate with Active Directory for authentication and

authorization, create at least one association object and one RAC device object for each CMC. You can create multiple

association objects, and each association object can be linked to as many users, groups of users, or RAC device objects

as required. The users and RAC device objects can be members of any domain in the enterprise.

However, each association object can be linked (or, may link users, groups of users, or RAC device objects) to only one

privilege object. This example allows an administrator to control each user's privileges on specific CMCs.

The RAC device object is the link to RAC firmware for querying Active Directory for authentication and authorization.

When a RAC is added to the network, the administrator must configure the RAC and its device object with its Active

Directory name so that users can perform authentication and authorization with Active Directory. Additionally, the

administrator must add the RAC to at least one association object for users to authenticate.

The following figure shows that the association object provides the connection that is needed for the authentication and

authorization.

NOTE: The RAC privilege object applies to DRAC 4, DRAC 5, and CMC.

You can create as many or as few association objects as required. However, you must create at least one Association

Object, and you must have one RAC device object for each RAC (CMC) on the network that you want to integrate with

Active Directory.

The Association Object allows as many or as few users and/or groups as well as RAC Device Objects. However, the

Association Object only includes one Privilege Object per Association Object. The Association Object connects the

Users who have Privileges on RACs (CMCs).

Additionally, you can configure Active Directory objects in a single domain or in multiple domains. For example, you have

two CMCs (RAC1 and RAC2) and three existing Active Directory users (user1, user2, and user3). You want to give user1

and user2 an administrator privilege to both CMCs and give user3 a login privilege to the RAC2 card. The following figure

illustrates how you set up the Active Directory objects in this scenario.

When adding Universal Groups from separate domains, create an Association Object with Universal Scope. The Default

Association objects created by the Dell Schema Extender Utility are Domain Local Groups and does not work with

Universal Groups from other domains.

116

Table of Contents

Show Quick Links

Quick Links:
CMC Port Information

Hide quick links:

Table of Contents

Troubleshooting

This manual is also suitable for:

Chassis management controller

Dell PS-M4110 User Manual page 116

Hide quick links:

Troubleshooting

Related Manuals for Dell PS-M4110

Related Products for Dell PS-M4110

This manual is also suitable for:

Table of Contents