Skip to main content
OnCommand Unified Manager 9.5
A newer release of this product is available.

Adding authentication servers

Contributors

You can add authentication servers and enable remote authentication on the management server so that remote users within the authentication server can access Unified Manager.

Before you begin

  • The following information must be available:

    • Host name or IP address of the authentication server

    • Port number of the authentication server

  • You must have enabled remote authentication and configured your authentication service so that the management server can authenticate remote users or groups in the authentication server.

  • You must have the OnCommand Administrator role.

About this task

If the authentication server that you are adding is part of a high-availability (HA) pair (using the same database), you can also add the partner authentication server. This enables the management server to communicate with the partner when one of the authentication servers is unreachable.

Steps

  1. In the toolbar, click clusterpage settings icon, and then click Authentication in the left Setup menu.

  2. In the Setup/Authentication page, click Management Server > Authentication.

  3. Enable or disable the Use secure connection authentication option:

    If you want to…​ Then do this…​

    Enable it

    1. In Enable remote authentication checkbox, select the Use Secure Connection option.

    2. In the Authentication Servers area, click Add.

    3. In the Add Authentication Server dialog box, enter the authentication name or IP address (IPv4 or IPv6) of the server.

    4. In the Authorize Host dialog box, click View Certificate.

    5. In the View Certificate dialog box, verify the certificate information, and then click Close.

    6. In the Authorize Host dialog box, click Yes.

      Note

      When you enable the Use Secure Connection authentication option, Unified Manager communicates with the authentication server and displays the certificate. Unified Manager uses 636 as default port for secure communication and port number 389 for non-secure communication.

    Disable it

    1. In the Enable remote authentication checkbox, clear the Use Secure Connection option.

    2. In the Authentication Servers area, click Add.

    3. In the Add Authentication Server dialog box, specify either the host name or IP address (IPv4 or IPv6) of the server, and the port details.

    4. Click Add.

    The authentication server that you added is displayed in the Servers area.

  4. Perform a test authentication to confirm that you can authenticate users in the authentication server that you added.