Managing User Accounts



Similar documents
Managing User Accounts

Managing User Accounts

Setting the Management IP Address

Managing the System Event Log

Managing the System Event Log

Configuring User Identification via Active Directory

System Administration and Log Management

Creating and Issuing the Workstation Authentication Certificate Template on the Certification Authority

Using the Content Distribution Manager GUI

How To Backup In Cisco Uk Central And Cisco Cusd (Cisco) Cusm (Custodian) (Cusd) (Uk) (Usd).Com) (Ucs) (Cyse

Managing the System Event Log

Monitoring Inventory. Inventory Management. This chapter includes the following sections:

IIS, FTP Server and Windows

To enable an application to use external usernames and passwords, you need to first configure CA EEM to use external directories.

Integrating LANGuardian with Active Directory

Sample Configuration: Cisco UCS, LDAP and Active Directory

LDAP Server Configuration Example

Managing Identities and Admin Access

Installing the Operating System or Hypervisor

Only LDAP-synchronized users can access SAML SSO-enabled web applications. Local end users and applications users cannot access them.

LDAP Implementation AP561x KVM Switches. All content in this presentation is protected 2008 American Power Conversion Corporation

Integrating with IBM Tivoli TSOM

Application Note. ShoreTel 9: Active Directory Integration. Integration checklist. AN June 2009

Video Administration Backup and Restore Procedures

End User Configuration

Microsoft IAS Configuration for RADIUS Authorization

Moving the TRITON Reporting Databases

How To - Implement Single Sign On Authentication with Active Directory

External Authentication with Cisco VPN 3000 Concentrator Authenticating Users Using SecurAccess Server by SecurEnvoy

Upgrading User-ID. Tech Note PAN-OS , Palo Alto Networks, Inc.

External Authentication with Citrix Secure Gateway - Presentation server Authenticating Users Using SecurAccess Server by SecurEnvoy

Managing Rack-Mount Servers

PRODUCT WHITE PAPER LABEL ARCHIVE. Adding and Configuring Active Directory Users in LABEL ARCHIVE

Your Question. Net Report Answer

How To Integrate Watchguard Xtm With Secur Access With Watchguard And Safepower 2Factor Authentication On A Watchguard 2T (V2) On A 2Tv 2Tm (V1.2) With A 2F

Active Directory Integration for Greentree

Active Directory integration with CloudByte ElastiStor

TSM for Windows Installation Instructions: Download the latest TSM Client Using the following link:

Configuring Cisco Secure ACS v5.5 to use RADIUS for Orchestrator Authentication

Use Enterprise SSO as the Credential Server for Protected Sites

Configuring Color Access on the WorkCentre 7120 Using Microsoft Active Directory Customer Tip

Egnyte Single Sign-On (SSO) Configuration for Active Directory Federation Services (ADFS)

Ensure that your environment meets the requirements. Provision the OpenAM server in Active Directory, then generate keytab files.

Two-Factor Authentication

QUANTIFY INSTALLATION GUIDE

Dell SonicWALL and SecurEnvoy Integration Guide. Authenticating Users Using SecurAccess Server by SecurEnvoy

Configuring the Palo Alto Firewall for use with Juniper Steel-Belted RADIUS.

Integrating idrac7 With Microsoft Active Directory

Creating Home Directories for Windows and Macintosh Computers

Configuring Microsoft Active Directory for Integration with NextPage NXT 3 Access Control

Integrating Autotask Service Desk Ticketing with the Cisco OnPlus Portal

How to Configure Microsoft System Operation Manager to Monitor Active Directory, Group Policy and Exchange Changes Using NetWrix Active Directory

LDAP Server Configuration Example

Unified Monitoring Portal Online Help Account Admin

Configure Cisco Unified Customer Voice Portal

External Authentication with Windows 2003 Server with Routing and Remote Access service Authenticating Users Using SecurAccess Server by SecurEnvoy

WatchDox Administrator's Guide. Application Version 3.7.5

Configure SecureZIP for Windows for Entrust Entelligence Security Provider 7.x for Windows

Integrating CoroSoft Datacenter Automation Suite with F5 Networks BIG-IP

Customer Tips. Configuring Color Access on the WorkCentre 7328/7335/7345 using Windows Active Directory. for the user. Overview

Configuring Steel-Belted RADIUS Proxy to Send Group Attributes

Protected Trust Directory Sync Guide

Active Directory Integration

NetIQ Advanced Authentication Framework - MacOS Client

Installing an OS on a Server

DEPLOYMENT GUIDE Version 1.2. Deploying F5 with Oracle E-Business Suite 12

Security Assertion Markup Language (SAML) Site Manager Setup

Administering Cisco ISE

Configure Single Sign on Between Domino and WPS

Integrating idrac 7 with Microsoft Active Directory

Single Sign On. Configuration Checklist for Single Sign On CHAPTER

PriveonLabs Research. Cisco Security Agent Protection Series:

Configure your firewall for administrative access via RADIUS authentication

CLEO NED Active Directory Integration. Version 1.2.0

Managing RAID. RAID Options

Using LDAP Authentication in a PowerCenter Domain

Charter Business Phone. Online Control Panel Getting Started Guide. Document Version 1.0

Gigabyte Content Management System Console User s Guide. Version: 0.1

How To - Implement Clientless Single Sign On Authentication in Single Active Directory Domain Controller Environment

IP Phone Services Configuration

SAML-Based SSO Solution

FTP, IIS, and Firewall Reference and Troubleshooting

Configuring the Hyper-V Virtual Machines

Deploying RSA ClearTrust with the FirePass controller

This is a training module for Maximo Asset Management V7.1. In this module, you learn to use the E-Signature user authentication feature.

LifeSize Control Installation Guide

Create, Link, or Edit a GPO with Active Directory Users and Computers

Kerberos authentication between multiple domains may fail on LiveCycle Rights Management ES 8.2.1

FLX UC1000/1500 Registering with Siemens HiPath 4000 & OpenScape Voice Server

HP Device Manager 4.7

Verify LDAP over SSL/TLS (LDAPS) and CA Certificate Using Ldp.exe

Adobe Connect LMS Integration for Blackboard Learn 9

Stonesoft Firewall/VPN 5.4 Windows Server 2008 R2

CA Unified Infrastructure Management Server

From Release 8.0, IPv6 can also be used to configure the LDAP server on the controller.

econtrol 3.5 for Active Directory & Exchange Administrator Guide

Installing Management Applications on VNX for File

Configuring Global Protect SSL VPN with a user-defined port

External Authentication with Windows 2012 R2 Server with Remote Desktop Web Gateway Authenticating Users Using SecurAccess Server by SecurEnvoy

Transcription:

Managing User Accounts This chapter includes the following sections: Configuring Local Users, page 1 Active Directory, page 3 Viewing User Sessions, page 6 Configuring Local Users Before You Begin You must log in as a user with admin privileges to configure or modify local user accounts. GUI Configuration Guide for Cisco UCS E-Series Server Modules Integrated Management Controller, Release 1.0 OL-26445-01 1

Configuring Local Users Managing User Accounts Procedure Step 1 Step 2 Step 3 In the Navigation pane, click the Admin tab. On the Admin tab, click User Management. In the User Management pane, click the Local User tab. Figure 1: Local Users Tab Step 4 Step 5 To configure or modify a local user account, click a row. In the User Details dialog box, update the following properties: ID column The unique identifier for the user. Enabled check box Username column If checked, the user is enabled on the CIMC. The username for the user. GUI Configuration Guide for Cisco UCS E-Series Server Modules Integrated Management Controller, Release 1.0 2 OL-26445-01

Managing User Accounts Active Directory Role column The role assigned to the user. This can be one of the following: read-only This user can view information but cannot make changes. user This user can: View all information Manage the power control options such as power on, power cycle, and power off Launch the KVM console and virtual media Clear all logs Toggle the locator LED admin This user can perform all actions available through the GUI, CLI, and IPMI. Step 6 Step 7 Enter password information. Click Save Changes. Active Directory Active Directory is a technology that provides a variety of network services including LDAP-like directory services, Kerberos-based authentication, and DNS-based naming. The CIMC utilizes the Kerberos-based authentication service of Active Directory. When Active Directory is enabled in the CIMC, user authentication and role authorization is performed by Active Directory for user accounts not found in the local user database. By checking the Enable Encryption check box in the Active Directory Properties area, you can require the server to encrypt data sent to Active Directory. Configuring the Active Directory Server The CIMC can be configured to use Active Directory for user authentication and authorization. To use Active Directory, configure users with an attribute that holds the user role and locale information for the CIMC. You can use an existing LDAP attribute that is mapped to the CIMC user roles and locales or you can modify the Active Directory schema to add a new custom attribute, such as the CiscoAVPair attribute, which has an attribute ID of 1.3.6.1.4.1.9.287247.1. For more information about altering the Active Directory schema, see http://technet.microsoft.com/en-us/library/bb727064.aspx. Use this procedure to create a custom attribute on the Active Directory server. GUI Configuration Guide for Cisco UCS E-Series Server Modules Integrated Management Controller, Release 1.0 OL-26445-01 3

Configuring the Active Directory Server Managing User Accounts Note This example creates a custom attribute named CiscoAVPair, but you can also use an existing LDAP attribute that is mapped to the CIMC user roles and locales. Procedure Step 1 Step 2 Ensure that the Active Directory schema snap-in is installed. Using the Active Directory schema snap-in, add a new attribute with the following properties: Properties Value Common CiscoAVPair LDAP Display Unique X500 Object ID Syntax CiscoAVPair 1.3.6.1.4.1.9.287247.1 CiscoAVPair Case Sensitive String Step 3 Step 4 Add the CiscoAVPair attribute to the user class using the Active Directory snap-in: a) Expand the Classes node in the left pane and type U to select the user class. b) Click the Attributes tab and click Add. c) Type C to select the CiscoAVPair attribute. d) Click OK. Add the following user role values to the CiscoAVPair attribute, for the users that you want to have access to CIMC: Role admin CiscoAVPair Attribute Value shell:roles="admin" user read-only shell:roles="user" shell:roles="read-only" Note For more information about adding values to attributes, see http://technet.microsoft.com/en-us/library/ bb727064.aspx. What to Do Next Use the CIMC to configure Active Directory. GUI Configuration Guide for Cisco UCS E-Series Server Modules Integrated Management Controller, Release 1.0 4 OL-26445-01

Managing User Accounts Configuring Active Directory in CIMC Configuring Active Directory in CIMC Before You Begin You must log in as a user with admin privileges to perform this task. Procedure Step 1 Step 2 Step 3 In the Navigation pane, click the Admin tab. On the Admin tab, click User Management. In the User Management pane, click the Active Directory tab. Figure 2: Active Directory Tab Step 4 In the Active Directory Properties area, update the following properties: Enabled check box Server IP Address field If checked, user authentication and role authorization is performed by Active Directory for user accounts not found in the local user database. If you check this box, CIMC enables the rest of the fields in this section. The Active Directory server IP address. GUI Configuration Guide for Cisco UCS E-Series Server Modules Integrated Management Controller, Release 1.0 OL-26445-01 5

Viewing User Sessions Managing User Accounts Timeout field Enable Encryption check box Domain field Attributes field The number of seconds the CIMC waits until the LDAP search operation times out. If the search operation times out, CIMC tries to connect to the next domain controller or global catalog listed on this tab, if one is available. If checked, the server encrypts all information it sends to Active Directory. The IPv4 domain that all users must be in. This field is required unless you specify at least one Global Catalog server address. An LDAP attribute that contains the role and locale information for the user. This property is always a name-value pair. The system queries the user record for the value that matches this attribute name. The LDAP attribute must have the following attribute ID: 1.3.6.1.4.1.9.287247.1 Note If you do not specify this property, user access is restricted to read-only. Step 5 Step 6 Click Save Changes. To log into the Active Directory server, enter the domain name, back slash (\), and the Active Directory username. For example, if the domain name is mydomain.com and the Active Directory username is admin, then the login name would be mydomain.com\admin. Viewing User Sessions Procedure Step 1 Step 2 Step 3 Step 4 In the Navigation pane, click the Admin tab. On the Admin tab, click User Management. In the User Management pane, click the Sessions tab. View the following information about current user sessions: Tip Click a column header to sort the table rows, according to the entries in that column. Session ID column The unique identifier for the session. GUI Configuration Guide for Cisco UCS E-Series Server Modules Integrated Management Controller, Release 1.0 6 OL-26445-01

Managing User Accounts Viewing User Sessions Username column IP Address column Type column Action column The username for the user. The IP address from which the user accessed the server. The method by which the user accessed the server. For example, CLI, vkvm, and so on. If your user account is assigned the admin user role, this column displays Terminate if you can force the associated user session to end. Otherwise it displays N/A. Note You cannot terminate your current session from this tab. GUI Configuration Guide for Cisco UCS E-Series Server Modules Integrated Management Controller, Release 1.0 OL-26445-01 7

Viewing User Sessions Managing User Accounts GUI Configuration Guide for Cisco UCS E-Series Server Modules Integrated Management Controller, Release 1.0 8 OL-26445-01

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information