AAA Server Groups
CDO represents an LDAP Server Group and its associated LDAP Servers as an Active Directory Realm object. For Active Directory (AD), a realm is equivalent to an Active Directory domain. Note that CDO does read the AD password for AD realm objects that are already present.
Procedure
Step 1 | In the CDO navigation bar on the left, click Objects > ASA Objects. |
Step 2 | Apply the Active Directory Realmsfilter to see this object. |
Step 3 | Select the Active Directory Realm object that you want and click Edit to see its details. |
What to do next
You can see that the AD realm contains the associated AD server and its configuration. If there are multiple Active Directory (AD) servers for the AD realm, the AD servers need to be duplicates of each other and support the same AD domain. Therefore, the basic realm properties such as Directory name, Directory Password, and Base Distinguished Name must be the same across all AD servers associated with that AD realm. CDO displays a warning message in the Active Directory Realm object if these properties aren't the same. You have to correct these properties to make them consistent across the AD servers. If you continue without addressing this warning, CDO uses one of the AD server properties and applies it to other servers in that realm object.