199
LDAP Feature for the Remote Console Switch
Figure 9-6. Typical Setup for Active Directory Objects
You can create as many or as few association objects as you want or need.
However, you must create at least one Association Object, and you must have
one RCS Device Object for each Remote Console Switch on the network that
you want to integrate with Active Directory for Authentication and
Authorization. The Association Object allows for as many or as few users
and/or groups as well as RCS Device Objects. However, the Association Object
only has one Privilege Object per Association Object. The Association Object
connects the “Users” who have “Privileges” on the RCSs.
In addition, you can set up Active Directory objects in a single domain or in
multiple domains. For example, you have two Remote Console Switches
(RCS1 and RCS2) and three existing Active Directory users (user1, user2, and
user3). You want to give user1 and user2 an administrator privilege to both
Remote Console Switches and give user3 a login privilege to the RCS2.
Figure 9-7 shows how you set up the Active Directory objects in this scenario.
RCS Device Object(s)
Privilege Object
Association Object
User(s) Group(s)
RCS Privilege Object