Configuring Active Directory Servers - Hitachi G600 Administration Manual
Vsp gx00 and fx00
Hide thumbs
Also See for G600:
- Reference manual (124 pages) ,
- Service manual (418 pages) ,
- System administrator manual (368 pages)
Table of Contents
Advertisement
TLS is a cryptographic protocol which provides security between applications
over a network.
For Active Directory authentication, the SMU supports up to TLS 1.2. It
negotiates with the domain controller to use the highest version of TLS which
is common to both.
The SMU requires domain controllers to respond on port 389. It is not
possible to configure the SMU to use any other port.
Configuring Active Directory servers
Global Administrators can provide information to configure, modify, and list
Active Directory servers for authentication on the Active Directory Servers
page.
Before you begin
In order to enable Active Directory use, the SMU administrator needs to know
the following information:
• The domain in which the Active Directory users and groups that will access
• The LDAP distinguished name and password of an Active Directory user
• The addresses of one or more Active Directory servers that maintain the
• The Active Directory group or groups whose members are to be given the
• If RADIUS was previously in use and it is to be replaced by Active
Note: On the NAS system, local users and Active Directory groups can be
created with read-only access. A read-only user has permission to view most
pages of the NAS Manager; however, they are not generally allowed to
perform any actions on the NAS Manager that would trigger a system or
configuration change
30
Storage System User Administration Guide for Hitachi NAS Platform and VSP Gx00 and Fx00 with NAS Modules
the SMU are located.
that has read access to users and groups on the Active Directory servers.
This is referred to as the Search User. The user can search for users or
groups under the supplied base distinguished name.
users and groups for the domain. The content of all configured servers
must be identical. If DNS servers have been configured for the SMU, then
the SMU should be able to automatically discover these server addresses
via the find servers button on the setup page. SRV records must be setup
in order for find servers to find the Active Directory servers.
right to log into the SMU.
Directory, then the RADIUS configuration must first be removed before
Active Directory can be configured. This is done from the Home>SMU
Administrator>RADIUS Servers page by clicking the remove all
settings button. No RADIUS user will be able to log into the SMU after
this is done.
SMU user authentication
- Quick Links:
- Changing User Passwords
Hide quick links:
Advertisement
Table of Contents
