Access Control with Active Directory

An Active Directory domain is a collection of objects within a Microsoft Active Directory network. The objects in the domain can include a single user, a group, or a hardware component, such as a computer or printer. Each domain contains a database that stores identity information about the object.

Active Directory relies on mapping Active Directory groups to array roles to determine a user's access. Users are assigned to particular Active Directory groups which are designated with specific array roles. The array roles indicate the level of access permissions that the group members have to perform particular functions.

NOTE: Active Directory on an HPE array can support up to 100 groups per array with up to 2000 Active Directory users logged in at one time. If you exceed 2000 users, the session for the user who has been logged into the system the longest is terminated.