Chapter 3: DSView Software Servers 55
Example 2 (with sub-domain):
“ou=myusers,ou=sun,dc=mktg,dc=sunrise,dc=mycompany,dc=com”
c. In the Group Container field, specify the name of the container to search for user groups.
This will limit the search scope to that container. The name may be entered in several
forms, optionally including a sub-domain. Valid forms are explained in step 3b above.
d. Specify a Secure Socket Layer (SSL) encryption mode:
•Click Do Not Use SSL to have authentication performed using unencrypted clear text
instead of SSL encryption. This method is the least secure.
•Click Use SSL in Trust All Mode to use SSL encryption for data transmission. All
server certificates will be trusted and automatically accepted by the DSView software
for transmitting data. This SSL method provides medium security.
This encryption mode is not recommended for wide area networks (WANs).
•Click Use SSL in Certificate-based Trust Mode to use SSL encryption for data trans-
mission. The DSView management software will approve the server and then the cer-
tificate before transmitting data. This SSL method provides maximum security.
e. Click Use Kerberos for User Authentication to use the Kerberos protocol for
authentication requests, including the browsing. If enabled, you must use DES encryption
types for this account. If an account was created prior to Active Directory, the user’s
password must be changed after this setting is changed. When this is not checked, the
LDAP protocol will be used.
f. Click Enable Chasing of Referrals to allow the Active Directory server to refer DSView
software clients to additional directory servers.
g. Click Use an Active Directory Global Catalog to have the AD service access the global
catalog for the specified domain name.
h. Click Next.
If you selected Use SSL in Certificate-based Trust Mode, continue to step 4.
If you selected Do Not Use SSL or Use SSL in Trust All Mode, go to step 6.
4. The Accept Certificate window will open and list all servers that belong to the domain.
5. Click Next to accept the certificate.
6. The Select Browsing Method window will open.
Click Browse Anonymously to browse users on the external Active Directory
authentication server.
-or-
Click Browse with user credentials to browse users on the external Active Directory
authentication based on credentials configured on the server. If this option is selected, do
the following:
a. Type the username for an Active Directory account that has browse rights in the User
Name field. The log in ID must be entered in case sensitive text if the Active Directory
To Next Page
Loading...