White Papers

ManualsBrandsDell ManualsConverged InfrastructureEnterprise Solution Resources

Active Directory® Client Profile

10 Version 2.0.0a

ComputerSystem

(See Referencing Profile)

DCIM_OEMActiveDirectoryService

RegisteredProfile

(See Profile Registration Profile)

ElementConformsToProfile

(See Profile Registration Profile)

1..*

Identity

(See Simple Identity Management Profile)

DCIM_OEMActiveDirectoryCapabilities

ElementCapabilites

0..1

1..*

DCIM_OEMActiveDirectoryGroup

ServiceAffectsEleme

AssignedIdentity

(See Simple Identity Management Profile)

1..*

HostedService

OwningCollectionElement

(See Simple Identity Management Profile)

Active Directory® Client Profile: Class Diagram

The capability to disable and enable the Active Directory client

is advertised through the DCIM_OEMActiveDirectoryCapabilities instance. The Active Directory groups

IM_OEMActiveDirectoryGroup class.

oup

Active Directory authentication can be configured using two different schemas. Depending on which type

rements of the classes, properties and

ctiveDirectoryService.SchemaType property

the role and privilege objects reside on the Active

rectory client managed

ation about the managed

naged

ot on the Active Directory server. Active

Directory groups are represented by the DCIM_OEMActiveDirectoryGroup, and the associated security

principal is represented by CIM_Identity.

Figure 1 –

The Active Directory client service in a managed system is represented by the

DCIM_OEMActiveDirectoryService class.

are represented by the DC

The security principal of the Active Directory group associated with the DCIM_OEMActiveDirectoryGr

by CIM_AssignedIdentity is represented by CIM_Identity.

Profile information is represented with the CIM_RegisteredProfile instance.

6.1 Active Directory Schemas

of schema is used for authentication, the configuration requi

methods in the profile may change. The DCIM_OEMA

represents the current type of schema used by the Active Directory.

6.1.1 Extended Schema

When the Active Directory extended schema is used,

Directory. Authorization occurs on the Active Directory and not on the Active Di

system. The configuration of the Active Directory client involves providing inform

system’s object name and domain within the Active Directory.

6.1.2 Standard Schema

When the Active Directory standard schema is used, the role and privilege objects reside on the ma

system, Authorization occurs on the managed system and n