â–
Windo
ws Server 2012 R2
Prerequisite software
â–
Active Directory
Authentication protocol for user for searching
â–
LDAP v3 simple bind
Note:
When using an LD
AP server or a Kerberos server as an authentication server,
and combining it with an authorization server, use the same host for the
authentication and authorization servers.
When a RADIUS server is used as an authentication server, two
authentication servers (one primary and one secondary) can be speciî ´ed, but
only one authorization server can be speciî ´ed.
Connecting two authentication servers
T
wo authentication servers can be connected to a storage system. When the servers are
connected, the server conî ´gurations must be the same, except for the IP address and
the port.
If you sear
ch for a server using information registered in the SRV records in the DNS
server, conî ´rm that the following conditions are satisî ´ed:
Note: For RADIUS servers, you cannot use the SRV r
ecords.
LDAP server conditions:
â–
The envir
onmental setting for the DNS server is completed at the LDAP server.
â–
The host name, the port number, and the domain name of the LDAP server are
registered in the DNS server.
Kerberos server conditions:
â–
The host name, the port number, and the domain name of the Kerberos server
are registered in the DNS server.
Because UDP/IP is used to access the RADIUS server, no encrypted communications are
available, such as negotiations between pr
ocesses. To access the RADIUS server in a
secure environment, encryption in the packet level is required, such as IPsec.
Connecting authentication and authorization servers
To use an authentication server and an authorization server, you must create
conî ´guration î ´les and conî ´gure your network. Detailed setting information is required
for the authentication server and the authorization server, especially for creating a
conî ´guration î ´le.
Connecting two authentication servers
Chapter 5: Setting up security
System Administrator Guide for VSP Gx00 models and VSP Fx00 models 159
To Next Page
Loading...
Need help?
General