Chapter 6: User Management11316. The Dominion KX II provides you with the ability to test the LDAPconfiguration from the Authentication Settings page due to thecomplexity sometimes encountered with successfully configuring theLDAP server and Dominion KX II for remote authentication. To testthe LDAP configuration, enter the login name and password in the"Login for testing" field and the "Password for testing" fieldrespectively. This is the username and password you entered toaccess the Dominion KX II and that the LDAP server will use toauthenticate you. Click Test.Once the test is completed, a message will be displayed that lets youknow the test was successful or, if the test failed, a detailed errormessage will be displayed. It will display successful result or detailerror message in failure case. It also can display group informationretrieved from remote LDAP server for the test user in case ofsuccess.Returning User Group Information from Active Directory ServerThe Dominion KX II supports user authentication to Active Directory (AD)without requiring that users be defined locally on the Dominion KX II. Thisallows Active Directory user accounts and passwords to be maintainedexclusively on the AD server. Authorization and AD user privileges arecontrolled and administered through the standard Dominion KX II policiesand user group privileges that are applied locally to AD user groups.IMPORTANT: If you are an existing Raritan, Inc. customer, and havealready configured the Active Directory server by changing the ADschema, the Dominion KX II still supports this configuration andyou do not need to perform the following operations. See Updatingthe LDAP Schema for information about updating the ADLDAP/LDAPS schema.To enable your AD server on the Dominion KX II:1. Using the Dominion KX II, create special groups and assign properpermissions and privileges to these groups. For example, creategroups such as KVM_Admin and KVM_Operator.