Users Guide
Chapter 5 Configuring Your Library
Working With User Accounts
Dell PowerVault ML6000 User’s Guide 101
then login operations will fail. LDAPS has been deprecated in favor
of using StartTLS (see option below). Do not use LDAPS if you are
using StartTLS. Once you apply LDAPS, StartTLS will not be
available.
• StartTLS — Uses Transport Layer Security (TLS) over the same port
as regular LDAP (389). Select the StartTLS check box to configure
secure LDAP communication using TLS. If TLS mode is not
supported on your LDAP server, then login operations will fail. Do
not use StartTLS if you are using LDAPS. See Figure 15 on page103.
Installing an LDAP TLS CA Certificate 5
If you are using LDAPS or StartTLS, you can also install a TLS CA
certificate for additional verification that the LDAP server has not been
compromised. The certificate must be the same certificate that is installed
on your LDAP server and must be in .pem format. The library will only
perform the verification if you have configured Secure LDAP (using
either LDAPS or StartTLS). Place a copy of the certificate file in an
accessible location on your computer and use the Browse button to locate
and install it. Once a certificate is installed, you can remove it by selecting
the Remove TLS CA Certificate check box. See Figure 15 on page103.
Configuring LDAP on the Library 5
Before configuring LDAP, obtain the following LDAP parameters from
your network administrator. You need to enter these parameters in the
Setup - Remote Authentication screen on the Web client.
• Server URI — The Uniform Resource Identifier (URI) of the LDAP
server where user account information is stored. The URI includes
the LDAP server host name or IP address and can include the LDAP
server network port. Port 389 is the default.
Examples:
ldap://hostname:389
ldap://10.50.91.103
ldap://mycompany.com
• LDAPS — Optional. See Configuring Secure LDAP on the Library on
page 100.