08-11-2014 09:50 AM - edited 03-01-2019 11:47 AM
We currently have all of our FIs integrated with MS AD and I would like to do the same for the C-Series servers. I have a question regarding the "Attribute" field under "Search Parameters". It has by default "CiscoAvPair" what is this suppose to be?
Thanks
08-11-2014 03:52 PM
Hello,
The "CiscoAvPair" attribute can be used to expand an existing schema in the ldap configuration on the side of AD. Please see the following:
In the second link, you'll notice that it is optional for LDAP configurations within the UCS.
Regards,
-Gabriel
08-12-2014 06:16 AM
We are using Microsoft AD and it works like a charm for UCSM and I am now trying to integrate the same config into some standalone C-Series servers.
So, the "CiscoAvPair" attribute will need to be added to use MS AD for the C-Series?
Thanks
08-12-2014 03:36 PM
It is not a necessary step, but you can do so if you choose. From the following:
The CIMC can be configured to use Active Directory for user authentication and authorization. To use Active Directory, configure users with an attribute that holds the user role and locale information for the CIMC. You can use an existing LDAP attribute that is mapped to the CIMC user roles and locales or you can modify the Active Directory schema to add a new custom attribute, such as the CiscoAVPair attribute, which has an attribute ID of 1.3.6.1.4.1.9.287247.1. For more information about altering the Active Directory schema, see the article at http://technet.microsoft.com/en-us/library/bb727064.aspx.
Regards,
-Gabriel
08-13-2014 07:12 AM
I get all of that, ok most of it....... We are not creating a new CiscoAVPair attribute. So what value will go into Search Parameters --> Attribute so we can utilize our current AD schema?
Thanks
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide