Download ldap certificate, Enable ldap, Remove ldap certificate – HP Onboard Administrator User Manual
Page 41
Directory commands 41
DOWNLOAD LDAP CERTIFICATE
•
Command:
DOWNLOAD LDAP CERTIFICATE "<url>"
•
Description:
o
Downloads an LDAP certificate to establish a trusted relationship with the LDAP server.
o
The <url> specifies the location of the certificate to be downloaded.
o
Supported protocols are HTTP, FTP, and TFTP.
o
Format the URL as protocol://host/path/file.
o
The URL syntax for IPv4 addresses is protocol://<ipv4 address>/path/file.
o
The URL syntax for IPv6 addresses is protocol://[<ipv6 address>]/path/file.
o
If your FTP server does not support anonymous connections, then you can specify a user name and
password in the format ftp://username:password@host/path/file.
•
Access level/Bay level:
OA administrator
•
Restrictions:
When the Onboard Administrator is operating in FIPS Mode, the minimum RSA key length is 2048 bits,
and the signature hash algorithm must be SHA1, SHA-224, SHA-256, SHA-384, or SHA-512.
ENABLE LDAP
NOTE:
If LDAP is enabled, local accounts are disabled, and the LDAP server becomes
unavailable, you can recover by booting into Lost Password mode.
When booting in Lost Password mode, the local Administrator password will be reset, LDAP is
disabled, and Local Logins are re-enabled
•
Command:
ENABLE LDAP [NOLOCAL]
•
Description:
Enables directory authentication. If you use the NOLOCAL option, local users are not enabled.
•
Access level/Bay level:
OA administrator
•
Restrictions:
Before you can enable LDAP, configuration must be complete.
REMOVE LDAP CERTIFICATE
•
Command:
REMOVE LDAP CERTIFICATE "<certificate name>"
•
Description:
o
Removes the trust certificate corresponding to the MD5 <certificate name>.