The following sections contain more information:
In ZENworks Control Center, click the
tab.In the User Sources panel, click
to launch the Create New User Source Wizard.Follow the prompts to create the connection to the user source.
For information about each of the wizard pages, click the
button or refer to the following table:
Wizard Page |
Details |
---|---|
Connection Information page |
Specify the information required to create a connection to the LDAP directory:
|
Certificate Page |
(Conditional) If you selected Use SSL on the previous Wizard page (Connection Information), the Certificate page displays as the next. step in the Wizard. Ensure that the Certificate is correct. |
Credentials page |
Specify a username and password for accessing the directory:
|
Authentication Mechanisms page |
Select the mechanism used to authenticate users to the ZENworks Management Zone. The available mechanisms depend on whether you are configuring a Novell eDirectory or a Microsoft Active Directory user source.
If you select both available mechanisms ( and for Active Directory or and for eDirectory), ZENworks Configuration Management attempts to use the first mechanism for authentication. If authentication fails, the next mechanism is used. For example, if you select and for Active Directory, ZENworks Configuration Management first attempts to use Kerberos authentication. If Kerberos authentication fails, simple Username/Password authentication is used. |
User Containers page |
After you connect to an LDAP directory as a user source, you can define the containers within the directory that you want exposed. The number of user containers you define is determined by how much of the directory you want to expose. Consider the following example: Assume that you want to enable all users in the Accounting and Sales containers to receive ZENworks content. In addition, you want to be able to access the user groups located in the Accounting, Sales, and Groups containers in order to distribute content based on those groups. To gain access to the users and groups, you have two options: Assume that you want to expose only the user and user groups in the Accounting, Sales, and Groups containers. To gain access to those users and groups, you have two options:
To add the containers where users reside:
|
When you delete a source, all assignments and messages for the source’s users are removed. You cannot undo a source deletion.
In ZENworks Control Center, click the
tab.In the User Sources panel, select the check box next to the user source, then click
.Click
to confirm the deletion.In ZENworks Control Center, click the
tab.In the User Sources panel, click the underlined link for a user source.
You can edit the following settings:
Username and Password: Click
, edit the fields, then click .The ZENworks system uses the username to access the LDAP directory. The username must provide read-only access to the directory. You can specify a username that provides more than read-only access, but read-only access is all that is required and recommended.
For Novell eDirectory access, use standard LDAP notation when specifying the username. For example:
cn=admin_read_only,ou=users,o=mycompany
For Microsoft Active Directory, use standard domain notation. For example:
AdminReadOnly@mycompany.com
Authentication Mechanisms: Click
, select the desired mechanisms, then click .For more information, see Section 31.2, Authentication Mechanisms.
Use SSL: By default, this option is enabled. Click
to disable the option if the LDAP server is not using the SSL (Secure Socket Layer) protocol.If you edit this option, you must do the following for every connection that is listed in the connections panel:
Update the certificate: For more information on updating the certificate see, Section 30.3.4, Updating a Certificate for a User Source
Update the port: If your LDAP server is listening on a different port, select that port number.
NOTE:If you edit the user source either to enable or disable the
option, you must restart the ZENworks services on the server or the authentication to the user source fails.Root Context: Click
, specify the root context, then click .The root context establishes the point in the directory where you can begin to browse for user containers. Specifying a root context can enable you to browse less of the directory, but it is completely optional. If you don’t specify a root context, the directory’s root container becomes the entry point. Click Edit to modify the root context.
Description: Click
, modify the optional information about the user source, then click .User Containers: For more information, see Section 30.2.4, Adding a Container from a User Source. You can also remove or rename a user container.
Connections: For more information, see Section 30.3.2, Editing User Source Connections.
Authentication Servers: For more information, see Section 30.5, Managing Authentication Server Connections for User Sources.
After you’ve defined a user source in your Management Zone, you can add containers from that source at any time.
In ZENworks Control Center, click the
tab.In the User Sources panel, click the user source.
In the User Containers panel, click
to display the Add User Container dialog box, then fill in the following fields:Context: Click to browse for and select the container you want to add.
Display Name: Specify the name you want used for the user container when it is displayed in ZENworks Control Center. The name cannot be the same as the name of any other user containers.
Click
to add the user container.The container, and its users and user groups, is now available on the
page.