LDAP User Attribute mode
In User Attribute mode (Figure 13) the directory checks the user ID and password. If they are valid,
the directory uses an attribute in the notes field of the user object to determine access rights.
Figure 13. Query processing in LDAP User Attribute mode
Domain
LDAP Group Attribute mode
In Group Attribute mode (Figure 14), the directory validates users by validating the user ID and
password. It then checks user groups to determine switch user access.
Figure 14. Query processing in LDAP Group Attribute mode
Switch
User
Switch
1.
Request to view
server console
Domain
Controller
Server
4.
Directory
response
5. Switch response
2. User ID + password
+ server forwarded
by LDAP
3. Directory checks User ID and password,
then checks user groups to determine
access for validated user.
KVM Switch
Admin Group
Windows Server
Admin Group
Linux£ Server
dmin Grou
Switch
User
Switch
1.
Request to view
server console
5. Switch
response
2. User ID + password
forwarded by LDAP
Controller
Server
3. Directory checks User ID and password and uses
notes attribute to determine access for validated
user.
User Attributes:
KVM Appliance Admin
4.
Directory
response
: can access any server
connected to the switch and can administer the
switch.
KVM User
: can view any server permissions are
granted for.
To Next Page
Loading...
Need help?
General
