Raritan DOMINION SX - Specifications Page 91
- Page / 178
- Table of contents
- TROUBLESHOOTING
- BOOKMARKS
Rated. / 5. Based on customer reviews
CHAPTER 6: AUTHENTICATION AND AUTHORIZATION 81
Chapter 6: Authentication and Authorization
If you selected LDAP as your remote authentication protocol, use the steps in the following section,
Implementing LDAP Remote Authentication, to complete fields in the LDAP tab.
1. Before starting the configuration of the LDAP authentication section in the Dominion SX
configuration, please gather all information for the required fields from the administrator of the
directory server.
2. Log on as a user with Admin privileges. Click on the Configuration tab, and then select the LDAP tab.
3. Enter the IP Address of your primary and secondary remote authentication servers in the Primary
Server IP Address and Secondary Server IP Address fields.
4. Enter the server secret/password needed to authenticate against your remote authentication servers in
the Secret Phrases field. Re-type the server secret in the Confirm Secret Phrase field.
5. When finished, click Update and then click Save to save the changes made to the LDAP tab.
Implementing LDAP Remote Authentication
Important: Microsoft Active Directory functions natively as an LDAP authentication server.
If you choose LDAP authentication protocol, complete the LDAP fields as follows:
• Use Secure LDAP – Apply this rule to enable LDAP(S), which ensures that all authentication requests
and replies transmitted over the network are encrypted. Generally, LDAP uses TCP port 389, and
LDAP(S) uses TCP port 636.
• Secret – This is the root password to access the directory server/manager. The name for this field
depends on the Directory Server. The SUN iPlanet directory server uses Secret. Microsoft Windows
Active Directory refers to it as the password.
• Base DN – This is the 'root' point to bind to the server; this is same as Directory Manager DN (e.g.,
BaseDn: cn=Directory Manager)
• Base Search – This is the sub-tree of the Base DN to direct the search to the path of the user
information such as UID and speed up search time. In other words, it is the domain name; this is where
the search starts for the user name. The user name is created in this domain. (e.g., BaseSearch:
dc=raritan, dc=com).
• Authorization Query String – This can be any string. But, the same string needs to be added as an
attribute under BaseSearch domain. For example, if the authorization query string is DominionSX,
then an attribute named DominionSX needs to be added under the given domain specified by
BaseSearch field. The values for this attribute are similar to as mentioned for RADIUS in Appendix C
of the Dominion SX user manual.
For example:
o:* gives access to all ports and the user type is Operator.
o:1:2:3 gives access to ports 1,2,3 and user type is Operator
ob:* is for Observer
a:* is for Administrator
Consult your authentication server administrator for the appropriate values to type into these fields in
order to process LDAP authentication queries from Dominion SX.
If you have any questions at this point, please contact your LDAP server administrator or Raritan
Customer Support.
- Installation and 1
- Operations Manual 1
- Contents 5
- ONTENTS 6
- ONTENTS iii 7
- Figures 8
- IGURES v 9
- Chapter 1: Introduction 11
- Package Contents 12
- Chapter 2: Installation 13
- Hardware Installation 14
- CHAPTER 2: INSTALLATION 5 15
- Initial Configuration 16
- Dominion SX 17
- CHAPTER 2: INSTALLATION 9 19
- Deployment 20
- Chapter 3: Operation 21
- Figure 12 Login Display 22
- Internet Explorer 23
- Sending a Break / Null 24
- Chapter 4: Console Features 25
- History 26
- Write Access 27
- Sending a Break/Null 28
- User List 29
- To Close RaritanConsole: 30
- Start Logging 32
- Stop Logging 33
- SecureChat 35
- Help Topics 36
- About RaritanConsole 37
- URL with Port Number 39
- Exit the Application 40
- Dominion SX Management 42
- Save and Reload 43
- Configuration 45
- Network 46
- Configure Modem Parameters 47
- Modem Usage 48
- Configure Port Parameters 49
- Edit Port Parameters 49
- Local Users 50
- Configurable Parameters 50
- Add a New User 51
- Delete a User 52
- IP ACL 53
- Figure 48 GUI User Interface 54
- IP-ACLs 56
- Certificate 58
- Default Certificate 59
- Generate Default Certificate 60
- View Certificate 60
- Figure 56 View CSR Display 62
- RADIUS 64
- RADIUS Advantages 65
- RADIUS Configuration 65
- Enabling RADIUS 66
- Current 67
- Notification 69
- Add a New Notification 70
- Edit a Notification Entry 71
- Delete a Notification Entry 71
- NAME DESCRIPTION 72
- EVENT NAME DESCRIPTION 72
- Soft Reset 75
- Factory Reset 76
- Interactive Session 79
- Secure Shell (SSH) Access 79
- Command Line Session 88
- Port Sharing Using SSH 89
- TACACS+ Server Configuration 92
- Chapter 7: Logging 95
- NFS Server Setup 96
- Chapter 8: SNMP 97
- Description 100
- Appendix A: Specifications 103
- Connectivity Table 104
- Dominion SX Serial Pinouts 105
- Appendix B: System Defaults 107
- Appendix C: Certificates 109
- Certificate Authority 110
- Appendix D: RADIUS Server 123
- Figure 95 New User Display 133
- Figure 104 Add User Display 138
- Figure 114 Connect to Window 144
- Figure 118 Device Selection 146
- Overview 149
- Boot Script Support 151
- File System 151
- File Directory Structure 151
- File System API through TCL 151
- TCL Commands 152
- Accessing TCL Window 153
- Resetting TCL Interpreter 153
- Editing TCL Scripts 153
- Executing TCL Scripts 153
- Important! Using 154
- Generating a User Event 155
- Extensions to TCL 156
- Usage: ampgetuser 157
- Basic TCL Server Example 165
- Input received is not as per 170
- Appendix I: Troubleshooting 171
- Firewall 172
- Port Access 173
- Upgrade 173
- Appendix J: Technical FAQs 175
- UESTION ANSWER 176
Related products and manuals for PC/workstation barebones Raritan DOMINION SX -
(9 pages)© 2020, manymanuals.com. All rights reserved. | 3.194 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals