exacqVision User Manual
1/24/2011
8
Active Directory/OpenLDAP
To configure exacqVision
permissions and privileges for accounts that exist on an Active
Directory or OpenLDAP
exacqVision Client version that you are using.
When the exacqVision server is appropriately confi
server, the Users page and the Enterprise User Setup page each contain a Query LDAP button that
allows you to search for users or user groups configured in Active Directory. You can manage
their exacqVision serv
er permissions and privileges using the exacqVision Client the same way
you would for a local user. On the System Information page, the Username column lists any
connected Active Directory users along with their Active Directory origin (whether each user
mapped as an individual or part of a user group) in parentheses.
Windows Server & Client and Active Directory
1.
On the Active Directory server, open the Windows Firewall control panel. In File and Printer Sharing, verify
that all four rules are listed
want to connect from a different subnet, click Change Scope and specify a custom list, as in the following
example:
192.168.1.0/255.255.255.0,192.168.100.0/255.255.255.0
2. Add a
rule for the DNS server (c:
appropriate.
3.
Add a rule for the Local Security Authentication Server (c:
scope setting if appropriate.
4. Add rules fo
r TCP ports 389 (standard cleartext LDAP) and 636 (standard SSL LDAP), observing the same
scope setting if appropriate.
5.
On the Active Directory server, enter 127.0.0.1 as its own DNS server address.
6.
On the exacqVision server or client computer, designate
server. To do this, open Network Connections, right
click Properties, and enter the Active Directory server IP address as the Preferred DNS Server.
7.
Make sure the Active Directory server’s fully qualified host name can be resolved. To do this, open a
command prompt, ping the fully qualified host name, and look for a reply.
Page 201
Active Directory/OpenLDAP
permissions and privileges for accounts that exist on an Active
, complete the procedure in the section that is applicable to the
exacqVision Client version that you are using.
When the exacqVision server is appropriately confi
gured and connected to your Active Directory
server, the Users page and the Enterprise User Setup page each contain a Query LDAP button that
allows you to search for users or user groups configured in Active Directory. You can manage
er permissions and privileges using the exacqVision Client the same way
you would for a local user. On the System Information page, the Username column lists any
connected Active Directory users along with their Active Directory origin (whether each user
mapped as an individual or part of a user group) in parentheses.
Windows Server & Client and Active Directory
On the Active Directory server, open the Windows Firewall control panel. In File and Printer Sharing, verify
that all four rules are listed
(usually TCP port 139, TCP port 445, UDP port 137, and UDP port 138). If you
want to connect from a different subnet, click Change Scope and specify a custom list, as in the following
192.168.1.0/255.255.255.0,192.168.100.0/255.255.255.0
rule for the DNS server (c:
\windows\system32\
dns.exe), observing the same scope setting if
Add a rule for the Local Security Authentication Server (c:
\windows\system32\
lsass.exe), observing the same
scope setting if appropriate.
r TCP ports 389 (standard cleartext LDAP) and 636 (standard SSL LDAP), observing the same
scope setting if appropriate.
On the Active Directory server, enter 127.0.0.1 as its own DNS server address.
On the exacqVision server or client computer, designate
the Active Directory server as the preferred DNS
server. To do this, open Network Connections, right
-
click the connection and select Properties, select TCP/IP,
click Properties, and enter the Active Directory server IP address as the Preferred DNS Server.
Make sure the Active Directory server’s fully qualified host name can be resolved. To do this, open a
command prompt, ping the fully qualified host name, and look for a reply.
permissions and privileges for accounts that exist on an Active
, complete the procedure in the section that is applicable to the
gured and connected to your Active Directory
server, the Users page and the Enterprise User Setup page each contain a Query LDAP button that
allows you to search for users or user groups configured in Active Directory. You can manage
er permissions and privileges using the exacqVision Client the same way
you would for a local user. On the System Information page, the Username column lists any
connected Active Directory users along with their Active Directory origin (whether each user
was
On the Active Directory server, open the Windows Firewall control panel. In File and Printer Sharing, verify
(usually TCP port 139, TCP port 445, UDP port 137, and UDP port 138). If you
want to connect from a different subnet, click Change Scope and specify a custom list, as in the following
192.168.1.0/255.255.255.0,192.168.100.0/255.255.255.0
dns.exe), observing the same scope setting if
lsass.exe), observing the same
r TCP ports 389 (standard cleartext LDAP) and 636 (standard SSL LDAP), observing the same
the Active Directory server as the preferred DNS
click the connection and select Properties, select TCP/IP,
click Properties, and enter the Active Directory server IP address as the Preferred DNS Server.
Make sure the Active Directory server’s fully qualified host name can be resolved. To do this, open a
To Next Page
Loading...
