TANDBERG D1459501 Server User Manual


 
TANDBERG Content Server printable online help 93
Field
Field description
Usage tips
If you select either Domain or LDAP
authentication, expand the LDAP server
section and enter the details of a Microsoft
Active Directory server. To enter details for
more than one LDAP server, click Add
LDAP server. Currently, only Microsoft
Active Directory Server is supported.
Clicking Save checks the LDAP server
settings because the Content Server
attempts to bind to the LDAP server.
Changes to this page are not saved if the
LDAP server settings are incorrect.
Understanding groups and users):
Local: Only users with valid local
accounts added through the Groups &
users page can log in. Local groups are
not supported.
Domain: Users with domain accounts
and local users are able to log in. The
local administrator account can be used
to configure the Content Server, or
other local or domain users can be
given a site manager role. Domain
authentication can only be used if the
Content Server has been added to a
domain. If you add the Content Server
to an existing domain, you need to
define a separate security policy for the
Content Server, otherwise the existing
security policies may prevent it from
functioning correctly. Contact your
authorized TANDBERG reseller or
partner for details of the recommended
security policy settings. The
recommended authentication mode for
a cluster is domain authentication.
LDAP: LDAP authentication does not
require the Content Server to be added
to a domain. Before changing
authentication from Local to LDAP, the
site manager must add at least one
LDAP user with the site manager role to
the Content Server. To do this, go to
Management Settings > Groups and
users and select Add groups or
users. Enter at least one valid
username in Site manager role. Under
LDAP authentication local users cannot
log in using the standard login method.
However, the local administrator can log
in by adding #page:login&rescue:true to
the end of the Content Server URL in
the browser.
Add LDAP
server
You can add up to five servers that the
Content Server will look up to authenticate
users.
Only active if you have selected Domain
or LDAP as the Authentication mode.
Server
address
The IP address or DNS name of your
LDAP server.
Only Microsoft Active Directory Server
is currently supported.
Port
Port 389 is the default port for most
Domain Controllers. Global Catalog
Servers may use port 389 or 3268.
Base DN
The search base which the Content Server
uses to search for user records. (DN =
Distinguished Name)
The Content Server searches the object
specified and any objects beneath it.
The Base DN is a unique name for this
container. It typically consists of OU,
CN, and DC components.