Naming an authorization server user group in HDvM - SN

System Administrator Guide for VSP 5000 Series

Version
90-09-2x
Audience
anonymous
Part Number
MK-98RD9009-16
CAUTION:
If you need to use different user groups for different purposes, create local user accounts on Device Manager - Storage Navigator. Do not use the authorization server.

When the authorization server protocol is LDAP

When you create a user group in Device Manager - Storage Navigator, you name the group with the user's memberOf attribute value which is found in the Active Directory. Device Manager - Storage Navigator supports Active Directory nested groups.

After entering the user group name, verify that the user group name that you entered is registered in the authorization server.

Note: The domain name (DN) of the user group to be set to Active Directory must be between 1 and 250 characters. The maximum number of user groups that can be registered at one time is 20.

When the authorization server protocol is RADIUS

When you create a user group in Device Manager - Storage Navigator, you name the group with the group name set in group information in the Attributes field in the Access-Accept response* from the authorization server.

* A response returned from an authorization server to a storage system when login is successful.