Univention Management Console makes it possible to enter data into the LDAP directory andthen display, edit and delete them there. It is also possible tosearch - filtered according to a wide range of criteria - fordata. The web interface offers a range of wizards for theadministration of user, groups, networks, computers, directory sharesand printers. The administration of computers also comprisescomprehensive functions for distributing and updating software.
Clicking on [Next] prompts the set-up wizard to check the connection to the AD domain controller. If it is not possible to create an SSL/TLS-encrypted connection, a warning is emitted in which you are advised to install a certification authority on the AD domain controller. It is recommended to follow this advice. Following this step, the set-up can be continued by clicking [Next] again. If it is still not possible to create an SSL/TLS-encrypted connection, a security query appears asking whether to set up the synchronisation without SSL encryption.If this is desired, the set-up can be continued by clicking [Continue without encryption]. In this case, the synchronisation of the directory data is performed unencrypted.
If the AD domain controller supports SSL/TLS-encrypted connections, the set-up wizard offers Upload AD root certificate in the next step. This certificate must be exported from the AD certification authority in advance (see Section 188.8.131.52). In contrast, if this step is skipped, the certificate can also be uploaded via the UMC module at a later point in time and the SSL/TLS encryption enabled (until that point all directory data will, however, be synchronised unencrypted). 153554b96e