![]() |
![]() |
Configuring Active directory Services involves configuring Active Directory within the Windows 2000 operating system and then extending the Active Directory Schema specifically for TSM, so that TSM Servers and their inventories of TSM client nodes become part of the Active Directory.
The following tasks are required to set up the Active Directory environment and TSM:
Configuring Active Directory within Windows 2000 involves setting up the Windows machine as a domain controller and adjusting the Domain Naming Service (DNS) for Active Directory. Any Windows Server that has been set up as a domain controller is a candidate to become an Active Directory Server. Refer to the Windows 2000 online help (Active Directory Checklist) and documentation for more information.
Configuring Active Directory for TSM involves using the Active Directory Configuration Wizard to extend the active directory schema and to define TSM Servers and their respective client nodes to Windows Active Directory Servers. This process requires the following tasks:
The steps required to update the schema involve the use of the Active Directory Schema snap-in. This snap-in is part of Windows 2000 Administration Tools, which is included on the Windows 2000 Server and Advanced Server compact disc sets. These tools enable administrators to manage the active directory schema on a Windows 2000 domain controller.
Administrators can use this procedure to create a separate account, other than the default system account, for the TSM Server service. The system account does not have the permissions required for Active Directory. After the Windows 2000 Administration Tools have been installed, administrators can configure permissions.
From the domain controller containing the Active Directory schema, do the following:
The Run dialog opens.
The Active Directory schema snap-in opens.
System administrators must allow TSM to update the Active Directory Schema before TSM can store information in and retrieve information from Active Directory. The Active Directory Schema, stored on the Windows 2000 domain controller, is a list of definitions that identifies objects and information about those objects. This one-time configuration allows TSM to extend the schema by adding objects to the schema that define TSM servers.
For more information about the active directory schema, refer to the Windows 2000 online help. A detailed description of the TSM Active Directory schema extensions is available from the TSM Web site at http://www.tivoli.com/support/storage_mgr/adwserv.htm.
An administrator must perform the following one-time operation to extend the Active Directory schema before adding the first TSM Server:
The Active Directory Configuration wizard appears in the right pane.
At this point, you can disable the permissions to extend the schema. To disable permissions, return to the schema snap-in, right-click Active Directory Schema, and click Permissions. Select your account name, uncheck the Full Control checkbox, and click OK. If you want to disable further schema updates you can right-click on the Active Directory Schema, and click Operations Master. Uncheck The Schema may be modified on this Domain Controller and click OK.
Configuring the TSM server and managing TSM in an Active Directory environment involves the following tasks:
TSM allows administrators to add or edit server entries so that they can define non-Windows TSM servers to Active Directory. When TSM clients look up TSM servers in Active Directory they do not know what platforms the servers are running on nor do they care. They are just looking for communication parameters that they can use to connect to a TSM server that knows about them.
TSM servers running on Windows can define themselves to Active Directory when they start up and they can also remove themselves from Active Directory when they are halted. Administrators can modify the three server options that control TSM Server behavior regarding Active Directory.
The Service Information report appears in the right pane. The TSM server, running as a service, should appear in the Service Information report. If the server does not appear in the report, ensure that you have initialized the server using the Server Initialization wizard in the TSM Console.
The Server Options File tabbed dialog appears.
The Active Directory options appear.
The next time the TSM server starts, it defines itself to Active Directory and adds information including the list of registered nodes and protocol information. This can be verified at any time using the Active Directory Configuration wizard in the TSM Console.
Adding TSM client nodes to and removing them from Active Directory is a matter of adding the nodes to or removing them from a TSM Server that has already been added to the Active Directory. TSM automatically updates the Active Directory.
The Wizards list appears in the right pane.
The Active Directory Configuration wizard starts.
The Settings dialog appears for the selected TSM server with the Nodes tab displayed.
The Node Name that needs to be added to the server dialog appears.
You can also connect a client node with a TSM server during the client configuration process. To select a server, click the Browse button on the communications protocol parameters page of the Client Configuration Wizard. The wizard displays a list of TSM servers with which the node is registered and that support the selected protocol. When you select a server and complete the wizard, the corresponding communication protocol information is included in the client options file.
The Wizards list appears in the right pane.
The wizard opens to the introductory dialog.