How it Works
Dell
Loading...
Chassis Management Controller
User Manual
221 pgs4.91 Mb0
User Manual
442 pgs10.78 Mb0
Version 3.1 Manual [de]
206 pgs2.52 Mb0
User Manual
420 pgs3.59 Mb0
Command Line Reference Guide
155 pgs3.74 Mb0
Version 1.20 Manual [es]
196 pgs4.13 Mb0
Version 5.20 Manual [es]
284 pgs6.92 Mb0
Owner's Manual
10 pgs306.81 Kb0
User Manual
231 pgs5.63 Mb0
User Manual
414 pgs3.76 Mb0
Quick Reference Guide
296 pgs2.28 Mb0
Owner's Manual
6 pgs65.02 Kb0
User Manual
348 pgs4.38 Mb0
White Paper
20 pgs1.1 Mb0
Version 5.20 Manual
146 pgs1.42 Mb0
Version 4.3 Manual [fr]
257 pgs9.19 Mb0
User Manual
378 pgs3.55 Mb0
Version 2.10 Manual
201 pgs1.54 Mb0
Version 2.10 Manual [de]
281 pgs5.86 Mb0
Troubleshooting
13 pgs883.42 Kb1
Owner's Manual
468 pgs3.93 Mb0
Version 2.10 Manual [es]
282 pgs5.85 Mb0
Version 1.40 Manual [ja]
159 pgs6.61 Mb0
Version 4.50 Manual [es]
291 pgs9.72 Mb0
Version 2.1 Manual [de]
204 pgs2.19 Mb0
Version 1.25 Manual
207 pgs4.64 Mb0
Version 1.10 Manual [fr]
176 pgs4.05 Mb0
Owner's Manual
24 pgs1.84 Mb0
User Manual
219 pgs4.87 Mb0
Owner's Manual
8 pgs378.46 Kb0
Version 5.20 Manual [fr]
271 pgs9.93 Mb0
Version 2.0 Manual [es]
257 pgs5.72 Mb0
Version 4.0 Manual [de]
552 pgs7.55 Mb0
Version 1.25 Manual [es]
222 pgs4.7 Mb0
Version 1.0 Manual
9 pgs154.34 Kb0
Version 4.50 Manual [zh]
246 pgs12.98 Mb0
Version 4.3 Manual [es]
259 pgs9.02 Mb0
Quick Reference Guide
152 pgs3.8 Mb0
Owner's Manual
6 pgs96.03 Kb0
Concept Guide
1 pgs385.81 Kb0
Version 2.10 Manual [fr]
240 pgs2.75 Mb0
Version 1.20 Manual [zh]
162 pgs6.33 Mb0
Version 2.20 Manual [ja]
216 pgs2.52 Mb0
Version 2.0 Manual [ja]
241 pgs8.08 Mb0
Version 4.0 Manual [zh]
414 pgs6.35 Mb0
Version 3.0 Manual [ja]
179 pgs3.38 Mb0
Version 4.50 Manual [fr]
291 pgs9.73 Mb0
Version 3.2 Manual [ja]
202 pgs3.82 Mb0
Version 2.1 Manual [fr]
204 pgs2.06 Mb0
Version 1.2 Manual [zh]
219 pgs3.25 Mb0
Version 1.25 Manual [zh]
182 pgs7.22 Mb0
Version 1.0 Manual [zh]
189 pgs2.95 Mb0
Version 1.2 Manual [de]
228 pgs2.45 Mb0
Version 3.0 Manual [fr]
186 pgs2.15 Mb0
Version 1.0 Manual [ja]
191 pgs3.05 Mb0
Quick Reference Guide
164 pgs1.18 Mb0
Owner's Manual
5 pgs111.55 Kb0
Owner's Manual
484 pgs3.97 Mb0
Owner's Manual
6 pgs135.84 Kb0
White Paper
9 pgs464.66 Kb0
Command Line Reference Guide
394 pgs10.51 Mb0
White Paper
11 pgs297.61 Kb0
Command Line Reference Guide
428 pgs11.09 Mb0
User Manual
260 pgs9.62 Mb0
Version 2.10 Manual [zh]
225 pgs9.16 Mb0
Version 2.20 Manual
167 pgs1.55 Mb0
Version 2.20 Manual
108 pgs863.78 Kb0
Version 1.0 Manual [ja]
203 pgs6.79 Mb0
Version 1.0 Manual [es]
213 pgs4.78 Mb0
Version 3.2 Manual [fr]
208 pgs2.38 Mb0
Version 2.1 Manual [ja]
194 pgs3.2 Mb0
Version 1.2 Manual [fr]
227 pgs2.33 Mb0
Version 4.0 Manual [es]
502 pgs7.71 Mb0
Version 3.1 Manual [zh]
194 pgs3.36 Mb0
Version 4.50 Manual [ja]
281 pgs12.32 Mb0
Version 3.1 Manual [es]
205 pgs2.33 Mb0
Version 1.0 Manual
21 pgs575.28 Kb0
Owner's Manual
386 pgs3.25 Mb0
Owner's Manual
5 pgs62.55 Kb0
Owner's Manual
8 pgs28.5 Kb0
Quick Reference Guide
192 pgs1.17 Mb0
Quick Reference Guide
223 pgs5.71 Mb0
Quick Reference Guide
389 pgs9.98 Mb0
Update Manual
32 pgs2.85 Mb0
Version 1.20 Manual
171 pgs4.42 Mb0
Version 1.20 Manual
147 pgs3.89 Mb0
Version 1.20 Manual [ja]
187 pgs5.81 Mb0
Version 1.10 Manual
161 pgs3.99 Mb0
Version 1.10 Manual [es]
176 pgs4.04 Mb0
Version 1.40 Manual [de]
166 pgs4.75 Mb0
Version 1.0 Manual [zh]
178 pgs7.32 Mb0
Version 3.2 Manual [es]
208 pgs2.35 Mb0
Version 4.3 Manual [ja]
253 pgs11.4 Mb0
Version 1.25 Manual [fr]
220 pgs4.71 Mb0
Version 1.30 Manual [zh]
211 pgs7.64 Mb0
Version 1.30 Manual [fr]
256 pgs4.97 Mb0
Version 1.0 Manual [fr]
194 pgs2.05 Mb0
Version 1.0 Manual [es]
196 pgs2.09 Mb0
Version 1.0 Manual [de]
197 pgs2.14 Mb0
Version 4.50 Manual
17 pgs868.25 Kb0
Version 5.21 Manual
8 pgs121.7 Kb0
Version 1.0 Manual
8 pgs178.96 Kb0
Owner's Manual
9 pgs30.82 Kb0
Quick Reference Guide
220 pgs5.69 Mb0
Owner's Manual
7 pgs107.29 Kb0
Version 1.40 Manual
154 pgs4.65 Mb0
Version 1.0 Manual
193 pgs4.69 Mb0
Version 1.0 Manual [fr]
207 pgs4.79 Mb0
Version 3.2 Manual [zh]
199 pgs3.49 Mb0
Version 3.1 Manual [fr]
202 pgs2.42 Mb0
Version 3.1 Manual [ja]
196 pgs3.62 Mb0
Version 1.20 Manual [fr]
195 pgs4.15 Mb0
Owner's Manual
10 pgs35.05 Kb0
User Manual
460 pgs3.23 Mb0
Messages Reference Guide
931 pgs26.51 Mb0
Version 1.10 Manual
142 pgs3.76 Mb0
Version 1.10 Manual [zh]
144 pgs6.13 Mb0
Version 1.10 Manual [ja]
166 pgs5.61 Mb0
Version 1.10 Manual [de]
177 pgs4.05 Mb0
Version 1.40 Manual [es]
163 pgs4.73 Mb0
Version 2.0 Manual [fr]
252 pgs5.73 Mb0
Version 2.0 Manual [de]
258 pgs5.73 Mb0
Version 1.0 Manual [de]
209 pgs4.8 Mb0
Version 3.0 Manual [zh]
179 pgs3.19 Mb0
Version 4.50 Manual [de]
293 pgs9.73 Mb0
Version 3.2 Manual [de]
212 pgs2.56 Mb0
Version 1.2 Manual [ja]
223 pgs3.54 Mb0
Version 1.2 Manual [es]
227 pgs2.29 Mb0
Version 1.30 Manual [ja]
238 pgs7 Mb0
Version 2.1 Manual [es]
203 pgs2.04 Mb0
Version 1.20 Manual [de]
198 pgs4.15 Mb0
Version 1.40 Manual [fr]
164 pgs4.75 Mb0
Version 2.20 Manual
211 pgs6.15 Mb0
Version 3.0 Manual [es]
186 pgs2.12 Mb0
Version 4.0 Manual [ja]
434 pgs9.02 Mb0
Version 4.3 Manual
234 pgs8.94 Mb0
Version 1.25 Manual [de]
224 pgs4.72 Mb0
Version 1.10 Manual
5 pgs84.72 Kb0
Version 2.10 Manual
182 pgs4.53 Mb0
Version 5.20 Manual [zh]
238 pgs13.76 Mb0
Version 4.3 Manual [de]
257 pgs9.04 Mb0
Quick Reference Guide
202 pgs1.32 Mb0
Quick Reference Guide
270 pgs1.95 Mb0
Troubleshooting
9 pgs265.74 Kb0
Version 5.20 Manual
245 pgs9.61 Mb0
Version 3.0 Manual [de]
191 pgs2.29 Mb0
Version 1.30 Manual [de]
262 pgs4.98 Mb0
Version 2.10 Manual
11 pgs149.97 Kb0
Version 1.40 Manual
8 pgs136.45 Kb0
Version 1.0 Manual
17 pgs113.51 Kb0
Version 2.0 Manual
9 pgs116.4 Kb0
Version 2.10 Manual [ja]
263 pgs8.39 Mb0
Owner's Manual
5 pgs19.59 Kb0
Table of contents
Loading...

Dell Chassis Management Controller Version 4.50 Manual

Dell Power Edge M1000e Chassis Management Controller Version 4.5 - Single Sign-On and Kerberos Model
This technical brief highlights the working of Single Sign- On and Kerberos Authentication Model in CMC 4.5
Dell Engineering January 2014
Author
Yogeshwar Bisht
A Dell Technical White Paper
Date
Description
January 2014
Initial Release
Revisions
THIS WHITE PAPER IS FOR INFORMATIONAL PURPOSES ONLY, AND MAY CONTAIN TYPOGRAPHICAL ERRORS AND TECHNICAL INACCURACIES. THE CONTENT IS PROVIDED AS IS, WITHOUT EXPRESS OR IMPLIED WARRANTIES OF ANY KIND. © 2014 Dell Inc. All rights reserved. Reproduction of this material in any manner whatsoever without the express written permission of Dell Inc. is strictly forbidden. For more information, contact Dell.
PRODUCT WARRANTIES APPLICABLE TO THE DELL PRODUCTS DESCRIBED IN THIS DOCUMENT MAY BE FOUND AT: http://www.dell.com/learn/us/en/19/terms- of-sale- commercial- and-public- sector
Performance of network reference architectures discussed in this document may vary with differing deployment conditions, network loads, and the like. Third party products may be included in reference architectures for the convenience of the reader. Inclusion of such third party products does not necessarily constitute Dell’s recommendation of those products. Please consult your Dell representative for additional information. Trademarks used in this text: Dell™, the Dell logo, Dell Boomi™, Dell Precision™ ,OptiPlex™, Latitude™, PowerEdge™, PowerVault™, PowerConnect™, OpenManage™, EqualLogic™, Compellent™, KACE™, FlexAddress™, Force10™ and Vostro™ are trademarks of Dell Inc. Other Dell trademarks may be used in this document. Cisco Nexus®, Cisco MDS
®
0S
, and other Cisco Catalyst® are registered trademarks of Cisco System Inc. EMC VNX®, and EMC Unisphere® are registered trademarks of EMC Corporation. Intel Intel Corporation in the U.S. and other countries. AMD Phenom™ and AMD Sempron™ are trademarks of Advanced Micro Devices, Inc. Microsoft
®
Server
, Internet Explorer®, MS- DOS®, Windows Vista® and Active Directory® are either trademarks or registered
trademarks of Microsoft Corporation in the United States and/or other countries. Red Hat
®
Linux
are registered trademarks of Red Hat, Inc. in the United States and/or other countries. Novell® and SUSE® are registered trademarks of Novell Inc. in the United States and other countries. Oracle Oracle Corporation and/or its affiliates. Citrix
®
, Pentium®, Xeon®, Core® and Celeron® are registered trademarks of
®
is a registered trademark and AMD Opteron™, AMD
®
, Xen®, XenServer® and XenMotion® are either registered trademarks or
®
, Windows®, Windows
®
and Red Hat® Enterprise
®
is a registered trademark of
®
, Cisco NX-
2 Dell Power Edge M1000e Chassis Management Controller Version 4.5 - Single Sign- On and Kerberos Model
trademarks of Citrix Systems, Inc. in the United States and/or other countries. VMware®, Virtual SMP®, vMotion®, vCenter countries. IBM NetXtreme
®
and vSphere® are registered trademarks or trademarks of VMware, Inc. in the United States or other
®
is a registered trademark of International Business Machines Corporation. Broadcom® and
®
are registered trademarks of Broadcom Corporation. Qlogic is a registered trademark of QLogic Corporation. Other trademarks and trade names may be used in this document to refer to either the entities claiming the marks and/or names or their products and are the property of their respective owners. Dell disclaims proprietary interest in the marks and names of others.
3 Dell Power Edge M1000e Chassis Management Controller Version 4.5 - Single Sign- On and Kerberos Model
Table of contents
Revisions .................................................................................................................................................................................................. 2
Executive summary ............................................................................................................................................................................... 5
Background ..................................................................................................................................................................................... 5
About Single Sign- On .................................................................................................................................................................... 5
1. Kerberos Model .............................................................................................................................................................................. 6
2. Kerberos Workflow ........................................................................................................................................................................ 7
3. Pre- requisites for Kerberos Authentication ........................................................................................................................... 10
Network Pre- requisites .............................................................................................................................................................. 10
CMC Pre- requisites ...................................................................................................................................................................... 11
4. Configuring CMC for SSO .......................................................................................................................................................... 11
5. References ..................................................................................................................................................................................... 17
4 Dell Power Edge M1000e Chassis Management Controller Version 4.5 - Single Sign- On and Kerberos Model
Executive summary
This document explains the following:
Working of Single Sign-On(SSO) using Kerberos, a network authentication protocol
Kerberos security mechanism
Configuring the Dell Chassis Management Controller for SSO.
The Dell Chassis Management Controller uses Kerberos to support single- sign on and Active directory account credentials to log in.

Background

It all started in early 1990, when some organizations moved to a combination of some authentication protocols, commonly known as Enterprise SSO (ESSO). These protocols later developed to more advanced browser- based plugin, Web Access Management (WAM).
Some protocols like Kerberos contain SSO features. However, the emphasis was to integrate applications within the network perimeter only. Later, SSO was alligned to cloud based services also including Software as a Service (SaaS).
In 2012, SSO technologies were developed to accommodate enterprises of all sizes, This was mainly due to
Security Assertion Markup Language 2.0 (SAML) protocol, which became an Organization for the Advancement of Structured Information Standards (OASIS) standard in 2005. The Simple Cloud Identity Management (SCIM) is the
latest protocol available. This defines a simple, RESTful protocol for identity account management operations.

About Single Sign- On

Single sign- on is an authentication process that allows network users to access all authorized network resources without having to log in separately to each resource. Single sign-on allows the user to validate usernames and passwords against the corporate user database or other client application rather than having separate user names and passwords.
The idea of today’s SSO is simple. The process authenticates the user for all the applications they have been given rights to. This eliminates further prompts when they switch applications during a particular session., There are various types of SSO. However, the preferred architecture is for a user to authenticate to a centrally managed system, and for applications to trust that central system for identity information about the user rather than re­authenticating.
5 Dell Power Edge M1000e Chassis Management Controller Version 4.5 - Single Sign- On and Kerberos Model

1. Kerberos Model

Operating systems such as Windows (2000 and above), Windows server (2003 and above) use Kerberos as an authentication protocol, allowing users who signed into the domain to access Chassis Management Controller (CMC) auomatically. This means, users can access CMC without entering user name and password in a secure way.
Kerberos model is based on three pillars:
Key Distribution Center (KDC): A trusted third party and a domain service, which uses Active Directory
to access user accounts. KDC basically provides two services.
- Authentication Service (AS): Issues Ticket Granting Ticket to access Ticket Granting Service.
- Ticket-Granting Service (TGS): Issues tickets for connection to computers in its domain.
Account Database: Active directory is a source of account database that KDC uses to access user
information.
Kerberos Policy: It is defined at the domain and is implemented by the domain’s KDC and is stored in
Active Directory
All traditional protocols, such as Internet message access protocol (IMAP), Simple Mail Transfer
Protocol (SMTP), and so on, support Kerberos
Note: There is no communication between the Key Distribution Center (KDC) and server throughout the process.
6 Dell Power Edge M1000e Chassis Management Controller Version 4.5 - Single Sign- On and Kerberos Model
Loading...
+ 11 hidden pages
Buy Points How it Works FAQ Contact Us Questions and Suggestions Privacy Policy Cookie Policy Terms of Use