LDAP Feature for the Remote Console Switch : Configuring Group Objects : Active Directory Object Overview for Standard Schema

Active Directory Object Overview for Standard Schema
For each of the physical Remote Console Switches on the network that you want to integrate with Active Directory for Authentication and Authorization, you must create at least one Computer Object to represent it. You will also need to create a computer object for each SIP attached to the RCS that will be controlled using the "KVM User" privilege level. Computer objects representing SIPs are not required for the Administrator level groups. Users in the KVM User Group will only have access to SIPs that are also in the KVM User Group. Users with Administrator privileges will have access to all SIPs by default.
To set up the Group Objects for a Remote Console Switch:
1
2
Within this Organizational Unit, create three group objects to represent user privilege levels. One for KVM Appliance Administrators, KVM User Administrators and KVM Users respectively.
3
Using the MSADUC tool, open the KVM Appliance Administrator Group Object and select the Notes property. Type the access level ("KVM Appliance Administrator") for that group in the Notes field and save. Repeat this step for the other two Group Objects using their respective names.
NOTE:
The single syntax for all access control attribute values is:

"[<arbitrary text string> <delimiter>] < privilege level> [<delimiter> <arbitrary text string>]"

Where: <privilege level> := "KVM User" or "KVM User Admin" or "KVM Appliance Admin"

<delimiter> ::= one or more of any of the following: <newline> or <c/r> or <comma> or <semicolon> or <tab>

<arbitrary text string> is any string of alphanumeric characters and may be the null (i.e., empty) string.

Square brackets indicate optional items; for example, the following template indicates an optional string and delimiter followed by a required privilege level: "[<arbitrary text string> <delimiter>] < privilege level1>".
4
5
6
7
8