Authentication services enable the authentication of remote users or groups in an authentication server before providing them access to Performance Manager. You can authenticate users by using the predefined authentication services, such as Active Directory or OpenLDAP, or by configuring your own authentication mechanism.
Before you begin
- You must have enabled remote authentication.
- You must have the OnCommand Administrator role or the Storage Administrator role.
Steps
- Click .
- In the Configure Settings dialog box, click .
- In the
Authentication dialog box, select one of the following authentication services:
| If you select... |
Then do this... |
|---|
| Active Directory |
- Enter the administrator name and password. You can specify the administrator name in one of the following formats:
- domainname\username
- username@domainname
- Bind Distinguished Name, using the appropriate LDAP notation.
- Specify the base distinguished name of the authentication server.
For example, if the domain name of the authentication server is ou@domain.com, then the base distinguished name is dc=ou,dc=domain,dc=com.
|
| OpenLDAP |
- Enter the bind distinguished name and bind password.
- Specify the base distinguished name of the authentication server.
For example, if the domain name of the authentication server is ou@domain.com, then the base distinguished name is dc=ou,dc=domain,dc=com.
|
| Others |
- Enter the bind distinguished name and bind password.
- Specify the base distinguished name of the authentication server.
For example, if the domain name of the authentication server is ou@domain.com, then the base distinguished name is dc=ou,dc=domain,dc=com.
- Specify the LDAP protocol version that is supported by the authentication server.
- Enter the user name, group membership, user group, and member attributes.
|
Note: If you want to modify the authentication service, ensure that you first delete any existing authentication servers and then add new authentication servers.
- Click Save and Close.
