Setting Up Active Directory

While you set up the Active Directory system, have your Active Directory Administrator work with you.

NOTE:  Details about driver architecture and driver/application relationships are discussed in the driver implementation guides. You can find driver implementation guides on the Novell Documentation Web Site.

To prepare a lab workstation to provision Active Directory users, complete the following sections:


Prerequisites

The computer where you will install Remote Loader and the driver must be running the following software:


Collecting Configuration Information

You'll need to provide a number of system-specific details when you install and configure Novell Nsure Resources for Active Directory. Some of these details can be collected before you complete the following procedures, and others will be defined during the process.

Print and complete the Import Driver Form for Active Directory, which mirrors the actual form you will fill out in iManager, or print the following table and record information there.

System Value

 

Authentication ID

 

Password

 

The IP Address for the Domain Controller

 

Domain Name

 

Domain DNS Name

 

IP Address and Port Number for the Remote Loader (Remote Host Name and Port)

(See Installing and Configuring the Remote Loader and Driver .)

 

Authentication Server (if the driver is not installed on PDC)

 

Driver Object Password

(See Installing and Configuring the Remote Loader and Driver .)

 

Remote Loader Password

(See Installing and Configuring the Remote Loader and Driver .)

 

Creating an Admin User

Create a user with Admin privileges to be exclusively used by the driver to authenticate into Active Directory. Doing this keeps DirXML Admin account isolated from changes to other Admin accounts.

  1. Click Start > Programs > Administrative Tools > Active Directory Users and Computers.

  2. From Active Directory Users and Computers, select the container where you want to add the user and then click Create a New User.

  3. Enter the Fullname, which is the AD object name, and enter the User logon name, which is the AD authentication name.

    Figure 21
    Creating an Active Directory User for the Driver

    Record the logon name plus the domain in the table under Collecting Configuration Information . For example, record novelldirxml@mercury.com. This information will be required later during driver parameter configuration.

  4. Click Next, then set the password for the new user. Mark Password Never Expires so that a password policy won't disable the driver unexpectedly.

    Record the password in the table under Collecting Configuration Information . This information will be required later during driver parameter configuration.

  5. Click Next, then review the summary, then click Finish.

  6. In the Tree view, select Builtin > Administrator's properties > Members > Add.

  7. Select the full name of the user you created > Add > OK > OK.

  8. Close the Active Directory Users and Computers window.

  9. In the Administrative Tools window, select Domain Controller Security Policy.

  10. In Tree View, expand Security Settings > Local Policies > User Rights Assignment.

  11. Select Log On As a Service > Security > Add > Browse.

  12. Select the user you created > Add > OK > OK > OK.

  13. Close the Domain Controller Security Policy.

  14. Reboot the system.

  15. Continue with the next section, Installing and Configuring the Remote Loader and Driver .


Installing and Configuring the Remote Loader and Driver

If you are running another DirXML Remote Loader service on this computer, such as the Remote Loader for the Exchange driver, stop that service before starting this procedure. Restart the service after completing this Remote Loader installation.

  1. Insert the Novell Nsure Resources CD and click Next at the Welcome screen.

  2. At the License page, click I Accept.

  3. At the Components dialog box, select DirXML Remote Loader Service, then click Next.

  4. Accept the default installation path for the Remote Loader and click Next.

  5. Mark the following items, then click Next.

  6. Review the Product Summary, then click Finish to install Remote Loader files.

  7. When prompted, create a shortcut.

  8. Run the DirXML Remote Loader Configuration Wizard from your desktop.

  9. At the Welcome page, click Next.

  10. Keep the default Command Port number, then click Next.

  11. Keep the default Configuration File Name, then click Next.

  12. In the DirXML Driver dialog box, mark Native, then click Next.

  13. In the Connection to DirXML dialog box, leave the default Port settings, and ensure that Use SSL is unchecked.

  14. Record the port number in the table under Collecting Configuration Information , then click Next. This information will be required later during driver parameter configuration.

  15. Set Trace Level to 3, so that you'll get minimal tracking data for troubleshooting, specify a location and filename for the trace file, then click Next.

    NOTE:  If you are running multiple Remote Loader sessions on a single computer, you should create separate trace files.

  16. Mark Install the Remote Loader Instance as a Service, then click Next.

  17. Set Remote Loader and Driver Object passwords.

    We recommend keeping remote passwords and driver passwords the same across systems and change it later when you go to production. Record the passwords in the table under Collecting Configuration Information . This information will be required later during driver parameter configuration.

  18. Review the summary, then click Finish.

  19. When prompted, start the service.

    The Active Directory system is prepared to provision resources to employees. Complete preparation of other participating systems and then proceed to Configuring DirXML Drivers .