Users and Groups > Quick Start: Add an authentication directory service and groups

  

 next

Quick Start: Add an authentication directory service and groups

This quick start describes how to add an authentication directory service (also called an enterprise directory or authentication login domain) and then provide single sign-on authentication for groups defined in the authentication directory service. Each user in a group is assigned the same role (for example, Infrastructure administrator).

An example of an authentication directory service is a corporate directory that uses LDAP (Lightweight Directory Access Protocol).

Scenario: Adding an OpenLDAP authentication directory service

This scenario describes how to add an OpenLDAP authentication directory service and add a group from that directory service.

Prerequisites 

  • Minimum required privileges: Infrastructure administrator.

  • The authentication directory service must be configured.

  • You must obtain an X509 certificate from the directory service provider. This certificate ensures the integrity of communication between the appliance and the directory service.

  • A user in the directory service must have OpenLDAP read privileges (rscdx) so that HPE OneView can read search results.

Process

Resource Task Description
Authentication directory

  1. Add the authentication directory and its server.

  2. Add authentication directory service.

  3. Validate the configuration service.

  4. Log in to the directory server.

  • For Directory, enter the name of the OpenLDAP directory service.

  • For Directory type, select OpenLDAP.

  • For Base DN, enter the domain component.

    Example: dc=example,dc=com

  • For User naming attribute, select either UID or CN, as needed.

  • For Organizational unit (OU), provide all user and group OUs in separate fields.

    Example: OU=People or OU=Groups

    For additional information on OUs under LDAP, see Add/Edit Directory screen details
Users and groups

  1. Add a group and assign roles.

  • You can enter the group name or select it from a list of available groups configured in the authentication directory service.

See also  

Scenario: Adding a Microsoft Active Directory authentication directory service

This scenario describes how to add a Microsoft Active Directory authentication directory service and add a group from that directory service.

Prerequisites 

  • Minimum required privileges: Infrastructure administrator.

  • The authentication directory service must be configured.

  • You must obtain an X509 certificate from the directory service provider. This certificate ensures the integrity of communication between the appliance and the directory service.

Process

Resource Task Description
Authentication directory

  1. Add the authentication directory and its server.

  2. Add the server for the authentication directory.

  3. Validate the configuration service.

  4. Log in to the directory server.

  • For Directory, enter the name of the Microsoft Active Directory service.

  • For Directory type, select Active Directory.

  • See About directory service authentication for considerations for configuring a Microsoft Active Directory directory service.
Users and groups

  1. Add a group and assign roles.

  • You can enter the group name or select it from a list of available groups configured in the authentication directory service.

See also  

prev

 

up

 next

Edit your local user account 

home

 Built-in groups — Microsoft Active Directory

Copyright © 2013, 2016 Hewlett Packard Enterprise Development LP