1.5 LDAP Directory Requirements

ZENworks 11 can reference existing user sources (directories) for user-related tasks such as assigning content to users, creating ZENworks administrator accounts, and associating users with devices creating ZENworks administrator accounts and associating users with devices. LDAP (Lightweight Directory Access Protocol) is the protocol used by ZENworks with respect to interacting with users.

Table 1-7 LDAP Directory Requirements

Item

Requirements

LDAP version

LDAP v3

OPENLDAP is not supported. However, if you have eDirectory installed on a SUSE Linux server, you can use that as a user source. LDAP v3 can be used to access eDirectory on the Linux server using the alternate ports that you specified for eDirectory when installing it (because OPENLDAP might have been using the default ports).

Authoritative user source

  • Novell eDirectory 8.7.3 or 8.8 (on all supported platforms)

    If you use eDirectory as the user source, make sure that no two eDirectory users have the same username and password. Even if the usernames are same, make sure that the passwords are different.

  • Microsoft Active Directory (as shipped with Windows 2000 SP4 or later)

  • Domain Services for Windows (DSfW)

LDAP user access

ZENworks requires only read access to the LDAP directory. For more information, see Connecting to User Sources in the ZENworks 11 SP2 Administration Quick Start.

LDAP Authentication

Simple bind

Simple bind is in which an application provides a Distinguished Name (DN) and the clear text password for that DN. To use a simple bind, the client must supply the DN of an existing LDAP entry and a password which matches the userPassword attribute for that entry. The Administrator can also enter the DN and the clear text password by using the Configuration page in the ZENworks Control Center.