Cisco Cisco TelePresence Video Communication Server Expressway 관리 매뉴얼
Maintenance
Cisco VCS Administrator Guide (X7.0)
Page 280 of 488
n
If local user account authentication is selected, each user account must be created locally by a VCS
administrator.
administrator.
n
If remote user account authentication is selected, a VCS administrator must set up user groups to
match the corresponding group names in the remote directory service.
match the corresponding group names in the remote directory service.
Note that if remote user account authentication is selected, only the username and password details are
managed remotely. All other properties of the user account, such as the FindMe ID, devices and
locations are stored in the local VCS database.
managed remotely. All other properties of the user account, such as the FindMe ID, devices and
locations are stored in the local VCS database.
See the
section for more information about defining user account details and
their associated FindMe devices and locations, and for enabling basic Starter Pack provisioning.
Note: use TMS if you need to provision a large number of user accounts. See the FindMe deployment
guide [
guide [
] for more details on configuring FindMe and user accounts.
Root accounts
The VCS provides a root account which can be used to log in to the VCS operating system. The root
account should not be used in normal operation, and in particular system configuration should not be
conducted using this account. Use the admin account instead.
account should not be used in normal operation, and in particular system configuration should not be
conducted using this account. Use the admin account instead.
See the
section for more information.
Note: remember to change the passwords for the admin and root accounts from their default values.
Configuring login account authentication
The
Login account authentication configuration
page (
Maintenance > Login accounts >
Configuration
) is used to configure where administrator and user account credentials are authenticated
(and authorized) before access is allowed to the VCS.
The Administrator authentication source and User authentication source options are:
n
Remote: credentials are verified against an external credentials directory (the VCS currently supports
only Windows Active Directory). If a Remote source is selected you need to configure the appropriate
LDAP settings on the
only Windows Active Directory). If a Remote source is selected you need to configure the appropriate
LDAP settings on the
page.
n
Local: credentials are verified against a local database stored on the VCS.
After specifying where accounts are authenticated you must set up the appropriate account details or
directory service group details. See the Authenticating VCS accounts using LDAP deployment guide
[
directory service group details. See the Authenticating VCS accounts using LDAP deployment guide
[
] for more details on configuring a remote directory service.
Account authentication using LDAP
The
Login account LDAP configuration
page (
Maintenance > Login accounts > LDAP
configuration
) is used to configure an LDAP connection to a remote directory service for administrator
and/or user account authentication.