Active IQ Unified Manager Discussions

OnCommand Unified Manager 6.3 Remote Authentication

DREdwards

I am currently supporting systems in multiple Domains in our Forest.  An OnCommand Unified Manager 6.3 server is installed in each Domain using a Domain User account for LDAP remote authentication.  We have created Security Groups in each Domain and added the admins from the monitoring department so they can log into OnCommand Unified using their Domain Accounts.  This is an administrative overhead we would like to resolve. 

 

Each of these Domains have a Trust Relationship.  We would like to use only 1 Domain account to access these systems.

Creating local accounts on the OnCommand server would violate our security policy.

 

Any ideas would be greatly appreciated.

 

Thanks

1 REPLY 1

hariprak

Hi,

 

If you have remote authentication enabled, you can disable nested group authentication so that only individual users and not group members can remotely authenticate to Unified Manager. You might disable nested groups when you want to improve Active Directory authentication response time.

 

For more details refer https://library.netapp.com/ecm/ecm_download_file/ECMP12469576

 

Thanks

If this post resolved your issue, help others by selecting ACCEPT AS SOLUTION or adding a KUDO.
Announcements
NetApp on Discord Image

We're on Discord, are you?

Live Chat, Watch Parties, and More!

Explore Banner

Meet Explore, NetApp’s digital sales platform

Engage digitally throughout the sales process, from product discovery to configuration, and handle all your post-purchase needs.

NetApp Insights to Action
I2A Banner
Public