Assigning Domain Users To The Mmb; Setting Up The Management Blade - Fujitsu PRIMERGY ServerView BX900 User Manual

Configuring an openLDAP Server
– <Department name> : The name of the department where the structure will be created, e.g. TestDepartment.
– If the password section is left blank, SVS_LDAPDeployer will ask for the administrator's password during
execution.
When the configuration is finished you can execute the SVS_LDAPDeployer by opening a CMD window, navigating
to the SVS_LDAPDeployer folder and using the following command:
# java -jar SVS_LdapDeployer.jar -deploy Configuration_InitialDeploy_Generic.xml
The SVS_LDAPDeployer starts, asks for the manager's password and creates the structure in the Open LDAP
directory which is needed to authenticate users of the MMB.

6.2.3 Assigning Domain Users to the MMB

To enable a user to log in on the management blade as a domain user, AuthorizationRoles must be set for this user:
1. Create a new user if none exists.
2. Navigate to SVS → Departments → [YourDepartment] → AuthorizationRoles.
3. Add the user to the desired role as a member and make sure you set the UID to match the login name.
Figure 59: Domain Users for MMB

6.2.4 Setting up the Management Blade

Open the BX900 MMB WebUI in advanced mode and navigate to Information/Operation → User Management →
Global Users. The following screenshot shows an example of the settings required for communication with an
openLDAP Server:
1. Enable LDAP: Enables LDAP authentication.
2. Enable LDAP SSL: Enables SSL communication between the MMB and the openLDAP Server.
(The MMB does not need a certificate and does not check the certificate delivered by the LDAP server.)
3. Disable Local Login: Disables the option of logging in without LDAP authentication.
72
Global User Management
ServerView BX900 Management Blade