Console redirection access security – Dell KVM 4161DS User Manual

Page 185

Advertising
background image

LDAP Feature for the Remote Console Switch

169

1 Select the Privileges Object tab and click Add.
2 Type the Privilege Object name and click OK.

Click the Products tab to add one or more SIP devices to the association. The

associated devices specify the SIP devices connected to the network that are

available for the defined users or user groups.

NOTE:

You can add multiple SIP devices to an association object.

To add SIP devices or SIP device groups:

1 Select the Products tab and click Add.
2 Type the SIP device or SIP device group name and click OK.
3 In the Properties window, click Apply and then OK.

Console Redirection Access Security

In any Remote Console Switch installation, any user privilege allows the user

to launch the on-board web interface. The on-board web interface

functionality for that user is limited by the User Privilege level established in

the Remote Console Switch. LDAP with Dell Extended Schema adds an

extra level of security to appliance management by allowing administrators to

limit a user's access to the on-board web interface.
Authorization to use the on-board web interface is defined by whether User

Privilege level is or is not configured in the KVM Appliance Privileges tab of

the Dell Privilege Object (DPO). The Console Redirection Access checkbox

in the KVM SIP Privileges tab of the DPO provides the means for a user who

cannot view the on-board web interface to launch Video Viewer sessions to a

subset of SIPs through the RCS Client. This authorization is controlled by a

combination of the configuration parameters set in the DPO and the SIP

Objects contained in the Dell Association Object (DAO).
If you do not wish a user to have authorization to access the on-board web

interface, but you do wish them to be able to launch viewer sessions from the

RCS Client, perform the following steps:

1 Create a Dell SIP object for each SIP that the User(s) is (are) allowed to

access.

2 Create an Active Directory User account for each of the users to be

controlled.

Advertising
Popular Brands
Popular manuals