UNIX Agent Manager can access the information you have already set up in your LDAP or Microsoft Active Directory server to allow users to log into the UNIX Agent Manager server. This functionality is not available if you restricted UNIX Agent Manager to only use Federal Information Processing Standard (FIPS) encrypted algorithms.
To configure UNIX Agent Manager server to use LDAP or Active Directory credentials:
Ensure you have the following information:
The domain and computer address, such as ldap://houston.itservice.production:389, of the LDAP or Active Directory server
The location of the user entries in the structure of the LDAP or Active Directory server
The attribute that identifies the login name for each user
An account that UNIX Agent Manager server can use to access the LDAP or Active Directory server
Log into a UNIX Agent Manager console as an administrator, and open the Manage Server window.
Click the LDAP tab, then the Add button.
Enter the name of the domain that contains the LDAP or AD server. Users must also enter this domain name when they log into UNIX Agent Manager.
Select the domain and provide the information as requested on the window using the following guidelines:
In Server Address, enter LDAP or Active Directory server computer name and port. For example, ldap://houston.itservice.production:389
In User’s Parent DN, enter the path to the node that contains the usernames you want to use. For example, ou=AMAdmins,dc=netiq,dn=com
In Username Attribute, enter the attribute you want UNIX Agent Manager to use to identify the user. This attribute will be used as a consistent identifier even if the user name changes. The default and only attribute supported by UNIX Agent Manager 7.2 is uid
(Conditional) If you use simple authentication for specific users, in Username, enter the path to the user name. For example, ou=Operator,dc=netiq,dn=com
Click Save.