In the "Resource" tab of the ROR console, you can open the screen of ServerView Operations Manager using the function to open the server management screen. This section explains how to set up Single Sign-on. You can use it access the server management screen of ServerView Operations Manager without being prompted to log in.

Perform user role assignment or release on ServerView Operations Manager.

Assign roles to users in the following procedure.

When Using Directory Services Provided with ServerView Operations Manager

• ServerView Operations Manager V5.5 or later

  1. Register a user from the ROR console.

     The user is registered in the directory service as well.

  2. Start the "User Management Wizard" of ServerView Operations Manager.

  3. The user registered in step 2 is displayed in the list. Assign a suitable role to the user.

• ServerView Operations Manager V5.5 or earlier

  1. Register a user from the ROR console.

     The user is registered in the directory service as well.

  2. Create an ldif file.

     An example of how to assign the Administrator role to the "rormanager" user account is indicated below.

     dn: cn=Administrator,OU=AuthorizationRoles,OU=CMS,OU=Departments,OU=SVS,dc=fujitsu,dc=com changetype: modify add: member member: cn=rormanager,ou=users,dc=fujitsu,dc=com dn: cn=Administrator,OU=AuthorizationRoles,OU=DEFAULT,OU=Departments,OU=SVS,dc=fujitsu,dc=com changetype: modify add: member member: cn=rormanager,ou=users,dc=fujitsu,dc=com

  3. Specify the ldif file created in step 2 and execute the ldapmodify command of the directory service.

     Before executing the ldapmodify command of the directory service, set the installation directory of the Java Runtime Environment (JRE) for the environment variable JAVA_HOME. An execution example is shown below.

     [Windows]

     >"C:\Program Files (x86)\Fujitsu\ServerView Suite\Directory service\bat\ldapmodify.bat" -p 1473 -f user.ldif -D "cn=Directory Manager" -w admin -c <RETURN>

     [Linux]

     # /opt/fujitsu/ServerViewSuite/Directory service/bin/ldapmodify -p 1473 -f user.ldif -D "cn=Directory Manager" -w admin -c <RETURN>

     The meanings of the options of the ldapmodify command are as follow.

     -p: the port number when not using SSL communication for the directory service (the default value is 1473).
     -f: the ldif file
     -D: the directory service administrator DN("cn=Directory Manager")
     -w: the password of the directory service administrator DN.

When Using Active Directory

Refer to the following manual.

• "Integrating ServerView user management into Microsoft Active Directory" of the "ServerView Suite User Management in ServerView"

  
  

When Using Directory Services Provided with ServerView Operations Manager

Release the role assignment in ServerView Operations Manager first, and then delete the users in Resource Orchestrator.

• ServerView Operations Manager V5.5 or later

  1. Start the "User Management Wizard" of ServerView Operations Manager.

  2. Registered user names are displayed. Delete all roles from the users to be deleted.

  3. Delete the users from the ROR console.

     The users will be deleted from the directory service.

• ServerView Operations Manager V5.5 or earlier

  1. Create an ldif file.

     An example of how to delete the "rormanager" user account from the Administrator role on ServerView Operations Manager is given below.

     dn: cn=Administrator,OU=AuthorizationRoles,OU=CMS,OU=Departments,OU=SVS,dc=fujitsu,dc=com changetype: modify delete: member member: cn=rormanager,ou=users,dc=fujitsu,dc=com dn: cn=Administrator,OU=AuthorizationRoles,OU=DEFAULT,OU=Departments,OU=SVS,dc=fujitsu,dc=com changetype: modify delete: member member: cn=rormanager,ou=users,dc=fujitsu,dc=com

  2. Specify the ldif file created in step 1 and execute the ldapmodify command of the directory service.

     Before executing the ldapmodify command of the directory service, set the installation directory of the Java Runtime Environment (JRE) for the environment variable JAVA_HOME. An execution example is shown below.

     [Windows]

     >"C:\Program Files (x86)\Fujitsu\ServerView Suite\Directory service\bat\ldapmodify.bat" -p 1473 -f user.ldif -D "cn=Directory Manager" -w admin -c <RETURN>

     [Linux]

     # /opt/fujitsu/ServerViewSuite/Directory service/bin/ldapmodify -p 1473 -f user.ldif -D "cn=Directory Manager" -w admin -c <RETURN>

     The meanings of the options of the ldapmodify command are as follow.

     -p: the port number when not using SSL communication for the directory service (the default value is 1473).
     -f: the ldif file
     -D: the directory service administrator DN("cn=Directory Manager")
     -w: the password of the directory service administrator DN.

When Using Active Directory

There are no tasks to be performed in advance.
If users have been registered in the directory service, deleting users from Resource Orchestrator deletes those users from Active Directory as well.
In addition, those users are released from the roles that were assigned on ServerView Operations Manager.