Configuring an ldap server – Brocade Network Advisor SAN User Manual v12.3.0 User Manual

Page 489

Advertising
background image

Brocade Network Advisor SAN User Manual

437

53-1003154-01

AAA Settings tab

11

LDAP Servers Not Reachable

LDAP Authentication Failed

User Not Found in LDAP

10. Set the authorization preference by selecting one of the following options from the

Authorization Preference list:

Local Database

Use the LDAP server for authentication and the Management application local
database for authorization.

The user name in the local database must match the LDAP user name (password does
not need to match) and must have the appropriate roles and AORs. If the
Management application user name and LDAP user name do not match, create the
user and assign the respective roles and AORs (refer to

“User Account Management”

on page 139).

Primary Authentication Server

Use the LDAP server for authentication and authorization.

In the LDAP server, create new custom attributes (NmRoles & NmAors) in the AD
server and assign the appropriate Roles and AORs (refer to

“Configuring roles and

AORs on the external LDAP server”

on page 448).

If this user already exists in the local database, the roles and AORs are overwritten
with the new roles and AORs configured in the LDAP Server.

LDAP Authorization

Use to assign roles and AORs to user groups and not to individual users.

When roles and AORs are assigned to a group, all AD users in the group can obtain the
roles and AORS assigned to the group. To assign roles and AORs to an AD Group, refer

“Assigning roles and AORs to an AD group”

on page 451.

You do not need to create users in the local database.

11. Click Apply to save the configuration.

To display the authentication audit trail, refer to

“Displaying the client authentication audit

trail”

on page 445.

12. Click Close to close the Server Management Console.

Confirm authentication and authorization by logging into the Management application server
(refer to

“Logging into a server from the server machine”

on page 3).

Configuring an LDAP server

To add or edit a LDAP server, complete the following steps.

1. Select the AAA Settings tab.

2. Select LDAP Server from the Primary Authentication list.

3. Choose one of the following options:

Click Add.

Select an existing LDAP server and click Edit.

The Add or Edit LDAP Server dialog box displays (

Figure 180

).

Advertising
Popular Brands
Popular manuals