Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document.
Note: Even the most advanced machine translation cannot match the quality of professional translators.
Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Preparing Windows AD Domain Configuration Data
Before adding a storage system to an AD domain, collect configuration data of a Windows AD domain server. The section uses Windows Server 2008 R2 as an example. The operation procedure is as follows:
- Log in to the Windows AD domain server. Choose Start > Administrative Tools > Active Directory Users and Computers. In the Active Directory Users and Computers window, view and record related parameters.
- Obtain the Base DN information. As shown in the figure, icp.com maps to Base DN on the configuration page of the storage system, that is, dc=icp,dc=com.
- Obtain the Bind DN information.
- On the menu bar of the Active Directory Users and Computers software, click View, and select Advanced Features to display advanced features of the AD domain server.
- Select the Users folder under icp.com.
- The Administrator is used as an example. Right-click Users and choose Properties.
- In the Administrator Properties dialog box, click Attribute Editor, select distinguishedName, and click View to obtain the Bind DN information. The queried Bind DN record is cn=Administrator,cn=Users,dc=icp,dc=com.
- On the menu bar of the Active Directory Users and Computers software, click View, and select Advanced Features to display advanced features of the AD domain server.
- Obtain the User Directory information. (This information is required when you create an LDAP user.)
- Administrator under Users is used as an example. Right-click the Users folder under icp.com, and choose Properties.
- In the Users Properties dialog box, click Attribute Editor, select the distinguishedName property, and click View to obtain the User Directory information. The queried User Directory record is cn=Users,dc=icp,dc=com.
- Administrator under Users is used as an example. Right-click the Users folder under icp.com, and choose Properties.
- Obtain the Group Directory information. (This information is required when you create an LDAP user group.)
- The Domain Admins user group under Users is used as an example. Right-click the Domain Admins user group and choose Properties.
- In the Domain Admins Properties dialog box, click Attribute Editor, select the distinguishedName property, and click View to obtain the Group Directory information. The queried Group Directory record is cn=Domain Admins,cn=Users,dc=icp,dc=com.
- The Domain Admins user group under Users is used as an example. Right-click the Domain Admins user group and choose Properties.
- Contact the Windows AD domain server administrator to obtain IP Address and Bind Password of the AD domain server.
For details about how to create AD domain users and groups on the AD domain controller, see How Can I Create AD Domain Users and Groups on the AD Domain Controller?
