2.3 Editing User Sources (Active Directory or eDirectory)

  1. In ZENworks Control Center, click the Configuration tab.

  2. In the User Sources panel, click the underlined link for a user source.

  3. You can edit the following settings:

    Username and Password: Click Edit, edit the fields, then click OK.

    The ZENworks system uses the username to access the LDAP directory. The username must provide read-only access to the directory. You can specify a username that provides more than read-only access, but read-only access is all that is required and recommended.

    For Novell eDirectory access, use standard LDAP notation when specifying the username. For example:

    cn=admin_read_only,ou=users,o=mycompany

    For Microsoft Active Directory, use standard domain notation. For example:

    AdminReadOnly@mycompany.com

    Authentication Mechanisms: Click Edit, select the desired mechanisms, then click OK.

    For more information, see Section 7.1, Authentication Mechanisms.

    Use SSL: By default, this option is enabled. Click No to disable the option if the LDAP server is not using the SSL (Secure Socket Layer) protocol.

    If you edit this option, you must do the following for every connection that is listed in the connections panel:

    NOTE:If you edit the user source either to enable or disable the Use SSL option, you must restart the ZENworks services on the server or the authentication to the user source fails.

    Root LDAP Context: Displays the root context for the LDAP directory. This option is available only when you are creating a new user source.The root context establishes the point in the directory where you can begin to browse for user containers. Specifying a root context can enable you to browse less of the directory, but it is completely optional. If you don’t specify a root context, the directory’s root container becomes the entry point. Click Edit to modify the root context.

    Ignore Dynamic Groups in eDirectory: This option allows you to select whether or not to display the dynamic groups in a Users page. If you choose to select Ignore Dynamic Groups in eDirectory, then users cannot assign a policy or a bundle to a dynamic user group and the dynamic group membership will not be computed while calculating the effective assignments for any user.

    Description: Click Edit, to modify the optional information about the user source, then click OK.

    User Containers: For more information, see Section 2.4, Adding a Container from a User Source. You can also remove or rename a user container.

    Connections: For more information, see Section 3.2, Editing User Source Connections.

    Authentication Servers: For more information, see Section 5.0, Managing Authentication Server Connections for User Sources.