Table of Contents
Advertisement
Lab Manager User's Guide
7
Select the Accept all certificates check box to allow LDAPS communication between the LDAP server and
Lab Manager server without requiring the LDAPS server certificate in the Lab Manager server certificate
store.
C
Do not select this option unless you are sure that your network is secure.
AUTION
If you do not select this option, you must import a server authentication certificate from the LDAPS server
into the Lab Manager server's certificate store. See the Windows Server 2003 Product Help for information
about importing certificates.
8
Select the authentication method for your LDAP server.
Active Directory Negotiate – Choose this method for Active Directory.
Digest‐MD5 – Choose this method for OpenLDAP without LDAPS. You must provide MD5 Realm
information.
Basic – Choose this method for OpenLDAP only if you are using LDAPS. If you are using LDAP, be
aware that the LDAP password is sent over the network in clear text.
9
Type a user name and password to connect to the LDAP server.
If anonymous read support is enabled on your LDAP server, you can leave these text boxes blank.
By default, Active Directory does not enable anonymous read, but OpenLDAP does.
10 Specify how often Lab Manager synchronizes with the LDAP server.
Synchronizing updates Lab Manager user and group information based on changes to the LDAP
directory. To synchronize immediately, click the Synchronize LDAP button.
Specify the LDAP Connector and Schema
Lab Manager supports Microsoft Active Directory and OpenLDAP, as well as the most common schemas
associated with each.
To specify the LDAP connector and schema
1
In the left pane, click Settings.
2
Click the LDAP tab.
3
Select a connector.
Lab Manager supports Active Directory and OpenLDAP. Certain options are enabled or disabled based
on your selection. For example, only Active Directory supports serverless binding.
4
Select an LDAP schema.
The LDAP schema defines the required and optional attributes for an LDAP directory entry.
If you select Active Directory as the connector, select Active Directory, unless you are using a custom
schema.
If you select OpenLDAP as the connector, select OpenLDAP(1), OpenLDAP(2), or OpenLDAP(3), unless
you are using a custom schema. OpenLDAP(1), (2), and (3) represent the most common implementations
of OpenLDAP. OpenLDAP(1) should work in most environments that are not significantly customized.
Check with your OpenLDAP administrator to determine which schema to choose or if you need a custom
schema.
The combination of connector and schema populates the text boxes in LDAP User Attributes and LDAP Group
Attributes.
140
VMware, Inc.
Advertisement
Table of Contents
