Table of Contents
Advertisement
11
AAA Settings tab
3. Set the authorization preference by selecting one of the following options from the
4. Enter the username for the Management application service account configured on the AD
5. Enter the password for the Management application service account configured on the AD
6. Enter the Kerberos SPN in the Kerberos Service Principal Name field.
7.
8. Click Apply to save the configuration.
9. Click Close to close the Server Management Console.
442
FIGURE 183
AAA Settings tab - CAC server
Authorization Preference list:
•
Local Database — Uses the AD server for authentication and the Management application
local database for authorization.
•
Primary Authentication Server — Uses the AD server for authentication and authorization.
If you select Primary Authentication Server or LDAP Authorization, CAC authentication uses the
same AD servers for authentication and authorization.
server in the Username field.
server in the Password and Confirm Password fields.
The SPN name uses the following syntax: <Service_Name>/<Hostname>, where hostname is
the Management application server's host name with domain name. For example:
NetworkManagementSPN/DCM-VNext-65.JCB.COM
Test the established active connection with the server by clicking Test.
The Test Authentication dialog box displays. Test performs the following functions and
verifications:
•
Obtains the Kerberos Ticket Granting Ticket (TGT) of the currently logged in user from
Windows cached credentials.
•
Sends the TGT to the AD server to which the Management application server is connected
and requests the session ticket for the SPN configured on AD server.
Kerberos encryptsthe session ticket with the credentials of the AD server user account
mapped to this SPN.
•
Logs on to the AD of the Management application server using the AD server
single-sign-on (SSO) service account.
•
Verifies the service ticket by decrypting it using AD server SSO service account credentials.
To display the authentication audit trail, refer to
trail"
on page 445.
"Displaying the client authentication audit
Brocade Network Advisor SAN User Manual
53-1003154-01
Advertisement
Chapters
Table of Contents
Troubleshooting
Related Manuals for Brocade Communications Systems WFT-2D
Related Products for Brocade Communications Systems WFT-2D
- Brocade Communications Systems Web Tools
- Brocade Communications Systems 53-1001763-02
- Brocade Communications Systems 53-1001778-01
- Brocade Communications Systems 6505
- Brocade Communications Systems 8
- Brocade Communications Systems Brocade 6520
- Brocade Communications Systems Brocade Fabric OS v7.1.0a
- Brocade Communications Systems DCFM
- Brocade Communications Systems DCFM Enterprise
- Brocade Communications Systems DCFM Professional Plus
- Brocade Communications Systems EZSwitchSetup
- Brocade Communications Systems Fabric OS 7.0
- Brocade Communications Systems Fabric OS 7.1.0
- Brocade Communications Systems Fabric OS Encryption
- Brocade Communications Systems Fabric OS FCIP
- Brocade Communications Systems Fabric OS v6.4