You can use the Authentication dialog box to configure the management server to communicate with your authentication server and authenticate remote users in the authentication server.
This area allows you to enable or disable remote authentication. You can enable remote authentication to enable the management server to authenticate remote users within the configured authentication servers.
Specifies the administrator name of the authentication server. The name must include the domain name and user name. For example, domain\admin.
Specifies the password to access the authentication server.
Specifies the location of the remote users in the authentication server. For example, if the domain name of the authentication server is ou@domain.com, then the base distinguished name is dc=ou,dc=domain,dc=com.
Specifies the bind distinguished name that is used along with the base distinguished name to find remote users in the authentication server.
Specifies the password to access the authentication server.
Specifies the location of the remote users in the authentication server. For example, if the domain name of the authentication server is ou@domain.com, then the base distinguished name is dc=ou,dc=domain,dc=com.
Specifies the bind distinguished name that is used along with the base distinguished name to find remote users in the authentication server that you have configured.
Specifies the password to access the authentication server.
Specifies the location of the remote users in the authentication server. For example, if the domain name of the authentication server is ou@domain.com, then the base distinguished name is dc=ou,dc=domain,dc=com.
Specifies the Lightweight Directory Access Protocol (LDAP) version that is supported by your authentication server. You can specify whether the protocol version must be automatically detected or set the version to 2 or 3.
Specifies the name of the attribute in the authentication server that contains user login names to be authenticated by the management server.
Specifies a value that assigns the management server group membership to remote users based on an attribute and value specified in the user's authentication server.
If the remote users are included as members of a GroupOfUniqueNames object in the authentication server, this option enables you to assign the management server group membership to the remote users based on a specified attribute in that GroupOfUniqueNames object.
Specifies the attribute name that your authentication server uses to store information about the individual members of a group.
Specifies the object class of all users in the remote authentication server.
Specifies the object class of all groups in the remote authentication server.
Displays the Add Server dialog box for adding an authentication server. You specify the name or IP address of the server and the port number.
If the authentication server that you are adding is part of an high-availability pair (using the same database), you can also add the partner authentication server. This enables the management server to communicate with the partner when one of the authentication servers is unreachable.
Displays the Edit Server dialog box for editing the settings for an authentication server. You can edit the name or IP address of the server and the port number.
Deletes the selected authentication servers.
This area enables you to test your configuration.
While testing, if you specify only the user name, the management server searches for the remote user in the authentication server, but does not authenticate the user. If you specify both the user name and password, the management server searches and authenticates the remote user.
You cannot test the authentication if remote authentication is disabled.
