Installing active directory, For the schema-free configuration, For hp extended schema – HP Integrated Lights-Out 4 User Manual
Page 265
•
Installing directory services for iLO requires extending the Active Directory schema. An Active
Directory schema administrator must extend the schema.
•
directory services for iLO uses LDAP over SSL to communicate with the directory servers. Before
you install snap-ins and schema for Active Directory, read and have available the following
documentation:
◦
Microsoft Knowledge Base Articles
These articles are available at
–
321051 Enabling LDAP over SSL with a Third-Party Certificate Authority
–
299687 MS01-036: Function Exposed By Using LDAP over SSL Could Enable
Passwords to Be Changed
◦
iLO requires a secure connection to communicate with the directory service. This connection
requires the installation of the Microsoft CA. For more information, see the Microsoft
Knowledge Base Article 321051: How to Enable LDAP over SSL with a Third-Party
Certification Authority.
Installing Active Directory
For the schema-free configuration
1.
Disable IPv6, and then install Active Directory, DNS, and the root CA to Windows Server
2008.
2.
Log in to iLO and enter the directory settings and directory user contexts on the
Administration
→Security→Directory page.
For more information, see
“Configuring directory settings” (page 70)
3.
Click Apply Settings to save the changes.
4.
Click the Administer Groups button, and then create directory groups for the iLO users.
For more information, see
“Administering users” (page 44)
5.
Navigate to the iLO Dedicated Network Port or Shared Network Port General Settings page,
and then enter the environment settings in the Domain Name and Primary DNS server boxes.
For more information, see
“Configuring IPv4 settings” (page 94)
For HP extended schema
1.
Disable IPv6, and then install Active Directory, DNS, and the root CA to Windows Server
2008.
2.
Verify that version 2.0 or later of the .NET Framework is installed. This software is required
by the iLO LDAP component.
3.
Install the latest HP Directories Support for ProLiant Management Processors software from
.
4.
Extend the schema by using the Schema Extender.
For more information, see
“Schema required software” (page 261)
.
5.
Install the HP LDAP component snap-ins.
For more information, see
“Schema required software” (page 261)
.
6.
Create the HP device and HP role.
7.
Log in to iLO and enter the directory settings and directory user contexts on the
Administration
→Security→Directory page.
For more information, see
“Configuring directory settings” (page 70)
Setting up HP extended schema directory integration 265