Configure Active Directory for the CloudLink encryption keystore

You must deploy a Windows Server that is accessible by CloudLink Center to use Active Directory to store CloudLink encryption keys. This procedure shows you how to configure Active Directory for the CloudLink encryption keystore on a Windows Server that is configured as a domain controller.

About this task

You must provide the hostname of the Windows Server during configuration. You also must add your DNS server to CloudLink Center. For more information, see Domain Name System servers in CloudLink.

Procedure

  1. Set up the Organization unit on Windows Server:
    1. On the Windows taskbar, click Start > All Programs > Administrative Tools, and then select Active Directory Users and Computers.
    2. Create an organization unit by expanding your domain name, and then right-click New > Organizational Unit.
    3. Enter a Name (for example, CloudLink_OU).
    4. Right-click the Organization Unit (for example, CloudLink_OU), and select New > Group.
    5. Enter the Group Name (for example, CloudLink_Group).
    6. Select Global and Security.
  2. Create a bind user:
    1. Right-click the Organization Unit (for example, CloudLink_OU), and select New, User.
    2. Enter the First Name (for example, Cloud), Last Name (for example, Link), and login name. Click Next.
    3. Type the Password, and then click Finish.
    4. Right-click the Organization Unit (for example, CloudLink_OU), and then select Delegate Control.
    5. Click Next to follow setup wizard.
    6. Click Add and enter the CloudLink group name (for example, CloudLink_Group).
    7. Click OK, and then click Next.
    8. Select Create a custom task to delegate, and then click Next.
    9. Select This folder, existing objects in this folder, and creation of new objects in this folder, and then clickNext.
    10. Select Full Control, and then click Next.
    11. Click Finish.
  3. Add the bind user to the security group:
    1. Double-click Security Group.
    2. Click the Members tab.
    3. Click Add.
    4. Type the bind user name.
    5. Click OK.
  4. Record the DN of CloudLink:
    1. Click Start, and then select Run.
    2. Type cmd, and then click OK.
    3. Enter dsquery OU (Support tool is required) and record the DN (for example, OU=CloudLink_OU,DC=company,DC=com).