Active IQ Unified Manager Discussions

OnCommand Unified Manager 6.3 Remote Authentication

DREdwards
2,641 Views

I am currently supporting systems in multiple Domains in our Forest.  An OnCommand Unified Manager 6.3 server is installed in each Domain using a Domain User account for LDAP remote authentication.  We have created Security Groups in each Domain and added the admins from the monitoring department so they can log into OnCommand Unified using their Domain Accounts.  This is an administrative overhead we would like to resolve. 

 

Each of these Domains have a Trust Relationship.  We would like to use only 1 Domain account to access these systems.

Creating local accounts on the OnCommand server would violate our security policy.

 

Any ideas would be greatly appreciated.

 

Thanks

1 REPLY 1

hariprak
2,472 Views

Hi,

 

If you have remote authentication enabled, you can disable nested group authentication so that only individual users and not group members can remotely authenticate to Unified Manager. You might disable nested groups when you want to improve Active Directory authentication response time.

 

For more details refer https://library.netapp.com/ecm/ecm_download_file/ECMP12469576

 

Thanks

If this post resolved your issue, help others by selecting ACCEPT AS SOLUTION or adding a KUDO.
Public