Owner's Manual
178 Using the CMC Web Interface
Enabling Smart Card enforces a Smart Card Only policy for
browser authentication. All other methods of browser
authentication such as Local or Active Directory
username/password authentication are restricted. If the Smart
Card Only usage enforcement policy is to be adopted, it is
important that the Smart Card operation be fully validated
before all other access methods to CMC are disabled.
Otherwise, it is possible to inadvertently lock all access to
CMC.
Root Domain
Name
Specifies the domain name used by Active Directory. The root
domain name is the fully qualified root domain name for the
forest.
NOTE: The root domain name must be a valid domain name using
the x.y naming convention, where x is a 1-256 character ASCII
string with no blank spaces between characters, and y is a valid
domain type such as com, edu, gov, int, mil, net, or org.
AD Timeout Sets the time in seconds after which an idle Active Directory
session is automatically closed.
Valid values: 15-300 seconds
Default: 90 seconds
Specify AD Server
to search
(optional)
Enables (when checked) directed call on the domain controller
and global catalog. If you enable this option, you must also
specify the domain controller and global catalog locations in
the following settings.
NOTE: The name on the Active Directory CA Certificate does not
be matched against the specified Active Directory server or the
Global Catalog server.
Domain Controller Specifies the server where your Active Directory service is
installed. This option is valid only if Specify AD Server to
search (Optional) is enabled.
Global Catalog Specifies the location of the global catalog on the Active
Directory domain controller. The global catalog provides a
resource for searching an Active Directory forest.
This option is valid only if Specify AD Server to search
(Optional) is enabled.
Table 5-46. Common Settings
(continued)
Field Description