OpenManage Enterprise: Active Directory Integration

Summary: Systems Management training video that covers how to configure OpenManage Enterprise Active Directory integration.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Instructions

Duration: 00:04:33 (hh:mm:ss)
When available, closed caption (subtitles) language settings can be chosen using the CC icon on this video player.


 


OpenManage Enterprise Active Directory: 

Active Directory requirements: 

  • Ports 636/3269 open from Appliance to DC 

  • Root CA Certificate on any DC being is used for LDAPS 

Note: Certificate upload is not required for AD authentication to work.


Active Directory Configuration: 
In the OpenManage Enterprise Web UI

Browse Application Settings > Users > Directory Services and select Add. 

  • Select the domain controller type (AD or LDAP).
  • Enter the required information for the Directory Name.
  • Domain controller Lookup can be DNS or Manual.
  • For Method, add in Domain Name or list of domain controller. 
  • Add in the Group Domain. 
  • For Server port use 636 or 3269 
  • Save the Settings.

To test, select the newly added entry, and click Edit. 

  • Once this passes, navigate back to User and select Import Directory Group. 

  • Select the AD Domain set up in the previous steps. 

  • Give it the credentials that passed the Test. 

  • Here it recursively searches Groups. Add in the Groups that you intend to use and give them permissions. 

  • Log out and log back in with AD. 

 

Active Directory Troubleshooting Scenarios: 

Active Directory Test Fails: 

  • Enable debug logging and export for review.

  • Most failures are firewall or LDAPS Bind issue. 

  • Select Manual for domain controller Lookup and add a Single domain controller if there are multiple domain controllers in the environment. 

  • Try both Ports 636 and 3269. 

  • Verify that the domain controller has a root CA Certificate within the Certificates MMC. 

  • Leverage LDP.exe in the Windows DC to test an LDAPS Bind 

 

Import Directory Groups does not find any groups: 

  • Enable debug logging and export for review.

  • It can be inferred that LDAPSs Bind works if the test can run, which may narrow down to permissions on the Groups OU. 

  • Use the Delegate Option in AD Users and Computers or use a Domain Admin to add groups. 

 

Cannot Log in after setup: 

  • Enable debug logging and export for review.

  • Configure it to use a single domain controller and verify the test works. 

Note: This is to rule out DNS or random nonworking DC.

  • Ensure that the user is a member of the groups added. 

  • Get a packet capture to see which part is failing. 

Affected Products

Dell OpenManage Enterprise, Dell EMC OpenManage Enterprise, Microsoft Windows Server 2016, Microsoft Windows Server 2019, Microsoft Windows Server 2022, Microsoft Windows Server 2025
Article Properties
Article Number: 000192345
Article Type: How To
Last Modified: 24 Oct 2025
Version:  8
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.