Adding authentication servers

You can add authentication servers and enable remote authentication on the management server so that remote users within the authentication server can access Unified Manager.

Before you begin

About this task

If the authentication server that you are adding is part of a high-availability (HA) pair (using the same database), you can also add the partner authentication server. This enables the management server to communicate with the partner when one of the authentication servers is unreachable.

Steps

  1. In the toolbar, click , and then click Authentication in the left Setup menu.
  2. In the Setup/Authentication page, click Management Server > Authentication.
  3. Required: Enable or disable the Use secure connection authentication option:
    If you want to... Then do this...
    Enable it
    1. In Enable remote authentication checkbox, select the Use Secure Connection option.
    2. In the Authentication Servers area, click Add.
    3. In the Add Authentication Server dialog box, enter the authentication name or IP address (IPv4 or IPv6) of the server.
    4. In the Authorize Host dialog box, click View Certificate.
    5. In the View Certificate dialog box, verify the certificate information, and then click Close.
    6. In the Authorize Host dialog box, click Yes.
    Note: When you enable the Use Secure Connection authentication option, Unified Manager communicates with the authentication server and displays the certificate. Unified Manager uses 636 as default port for secure communication and port number 389 for non-secure communication.
    Disable it
    1. In the Enable remote authentication checkbox, clear the Use Secure Connection option.
    2. In the Authentication Servers area, click Add.
    3. In the Add Authentication Server dialog box, specify either the host name or IP address (IPv4 or IPv6) of the server, and the port details.
    4. Click Add.
    The authentication server that you added is displayed in the Servers area.
  4. Perform a test authentication to confirm that you can authenticate users in the authentication server that you added.