The External Identity Repositories Web page in System Manager contains a summary page for Authentication scheme and Authentication servers. You can configure the authentication scheme and the authentication servers for System Manager.
System Manager supports the following authentication authorities:
Note:
If you are using Microsoft Active Directory for external authentication with System Manager, the userPrincipalName attribute of the user in the external server must contain a valid value.
If you are using the LDAP server other than Microsoft Active Directory for external authentication with System Manager, the UID attribute of the user in the external server must contain a valid value.
If you have configured external authentication before upgrading to System Manager 10.1.3.3 or 10.2.0.1 and higher releases, reset Password for Root Binding through the web console following the upgrade.
The authentication scheme policy determines the order in which you can use the authentication authorities. The supported order is as follows:
Local users (default)
External RADIUS users then local users
External LDAP users then local users
External Kerberos users, then local users
External LDAP users, then external RADIUS users, then local users
External RADIUS users, then external LDAP users, then local users
External KERBEROS users, then external multiple LDAP users, then local users
The authentication servers policy controls the settings for the external SAML, LDAP, RADIUS, and KERBEROS servers.
