Cisco Cisco TelePresence Video Communication Server Expressway 관리 매뉴얼
Maintenance
Root accounts
The Cisco VCS provides a root account which can be used to log in to the Cisco VCS operating
system. The root account should not be used in normal operation, and in particular system
configuration should not be conducted using this account. Use the admin account instead.
system. The root account should not be used in normal operation, and in particular system
configuration should not be conducted using this account. Use the admin account instead.
See the
section for more information.
Note: remember to change the passwords for the admin and root accounts from their default values.
Configuring login account authentication
The Login account authentication configuration page (
Maintenance > Login accounts >
Configuration
) is used to configure where administrator and user account credentials are
authenticated before access is allowed to the Cisco VCS.
The Administrator authentication source and User authentication source options are:
n
Remote: credentials are verified against an external credentials directory, for example Windows
Active Directory. If a Remote source is selected you need to configure the appropriate LDAP
settings on the
Active Directory. If a Remote source is selected you need to configure the appropriate LDAP
settings on the
page.
n
Local: credentials are verified against a local database stored on the Cisco VCS.
After specifying where accounts are authenticated you must set up the appropriate account details or
directory service group details. See the Authenticating Cisco VCS accounts using LDAP deployment
guide [
directory service group details. See the Authenticating Cisco VCS accounts using LDAP deployment
guide [
] for more details on configuring a remote directory service.
Account authentication using LDAP
The Login account LDAP configuration page (
Maintenance > Login accounts > LDAP
configuration
) is used to configure an LDAP connection to a remote directory service for
administrator and/or user account authentication.
To use LDAP for account authentication, you must also go to the
page and select a Remote administrator or user authentication source.
The configurable options are:
Field
Description
Usage tips
LDAP server configuration: this section specifies the connection details to the LDAP server.
Server
address
address
The IP address or Fully Qualified Domain Name (or
server address, if a DNS Domain Name has also
been configured) of the LDAP server to use when
making LDAP queries.
server address, if a DNS Domain Name has also
been configured) of the LDAP server to use when
making LDAP queries.
FQDN
address
resolution
address
resolution
Sets how the LDAP server address is resolved if it
is specified as an FQDN.
is specified as an FQDN.
Address record: DNS A or AAAA record lookup.
SRV record: DNS SRV record lookup.
The default is Address record.
Cisco VCS Administrator Guide (X6)
Page 202 of 295