bppm与AD域集成

1. 使用admin登录BMC ProactiveNet Operations Console，点击选项-> 集成编辑

2. 勾选LDAP集成方式，配置相关信息，点击应用

3. 查看配置文件%BPPM_HOME%\pw\pronto\conf\ldap_configuration

<?xml version="1.0" encoding="UTF-8"?>
<ldapList xmlns="urn:bmc:schemas:impact" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="urn:bmc:schemas:impact ldap_definitions.xsd">
  <ldap alias="test">
    <host>192.168.37.120</host>
    <port>389</port>
    <version>3</version>
    <connectionUserName>administrator@mvs.com</connectionUserName>
    <baseDN>DC=mvs,DC=com</baseDN>
    <userIdAttribute>sAMAccountName</userIdAttribute>
    <useSSL>false</useSSL>
    <userSearchFilter>(|(objectClass=person)(objectClass=user)(objectClass=inetOrgPerson)(objectClass=organizationalPerson))</userSearchFilter>
    <groupSearchFilter>(|(objectClass=group)(objectClass=groupOfUniqueNames)(objectClass=groupOfNames)(objectClass=groupOfUrls))</groupSearchFilter>
    <connectionPassword encrypted="true">jXnwPNvPfEonIw52M4m2tScjDnYziba1JyMOdjOJtrUnIw52M4m2tScjDnYziba1JyMOdjOJtrUnIw52M4m2tQ==</connectionPassword>
  </ldap>
</ldapList>

4. 查看AD组设置

5. 创建AD映射组

修改配置文件%BPPM_HOME%\pw\pronto\conf\ldap_ppm_group_mapping

<!DOCTYPE properties SYSTEM "http://java.sun.com/dtd/properties.dtd">
<!--
    Each entry's key is the LDAP group name and the value is the PPM group assigned to it.
    E.g.
        <entry key="ldap_group1">PPM Group1</etnry>
-->
<properties>
    <entry key="group1">group1</entry>
</properties>

6. 修改配置文件%BPPM_HOME%\pw\pronto\conf\ias.properties

com.bmc.sms.ixs.enable.ldap.login=true
com.bmc.sms.ixs.allow.local.groups.for.ldap=true

7. 重启jserver程序

pw p e jserver
pw p s jserver

8. Admin Console创建对应组

9. 使用域用户登入系统