Assigning an ad user to an ad group, Defining user accounts on the external ldap server – Brocade Network Advisor SAN User Manual v12.1.0 User Manual
Page 209
Brocade Network Advisor SAN User Manual
159
53-1002948-01
Authentication Server Groups authorization on the Management server
6
6. Click Next.
7. Select the Password Never Expires option and click Next.
8. Click Finish.
9. Right-click the new user in the Users pane and select Reset Password.
10. Assign a new password with at least one special character and one number and click OK.
11. Close the Active Directory Users and Computers dialog box.
Assigning an AD user to an AD group
To assign a new group in Active Directory Users and Computers, complete the following steps. For
more information, click F1 for help or refer to www.microsoft.com
1. Open the Active Directory Users and Computers console.
For example, on Windows XP, select Start > Programs > Administrative Tools > Active Directory
Users and Computers.
2. Right-click the new user in the Users pane and select Add to a Group.
3. Enter the group name in the Enter the object name to select text box and click Check Names.
4. Click OK.
Defining user accounts on the external LDAP server
If you configure the external LDAP server as the primary authentication server in the server
management console, you must define roles and AORs in the external LDAP server to match the
Management application roles and AORs.
Configuring roles and AORs on the external LDAP server
Open the Management console on the Active Directory installed server and complete the following
steps.
1. Select Start > Run.
2. Type mmc and press Enter.
3. Select File > Add/Remove Snap-in.
4. Click Add.
5. Select Active Directory Schema from the Available standalone snap-ins list and click Add.
6. Click Close.
7. Right-click the Attributes folder (Console Root/Active Directory Schema/ Attributes) and select
New > Attribute.
8. Create the NmAors attribute by completing the following steps.
a. Enter NmAors in the Common Name field.
b. Enter NmAors in the LDAP Display Name field.
c. Enter a unique object identifier in the Unique x500 Object ID field.