Installing active directory, For the schema-free configuration, For hp extended schema – HP Integrated Lights-Out 3 User Manual

Page 175

Advertising
background image

Installing directory services for iLO requires extending the Active Directory schema. An Active
Directory schema administrator must extend the schema.

directory services for iLO uses LDAP over SSL to communicate with the directory servers. Before
you install snap-ins and schema for Active Directory, read and have available the following
documentation:

Microsoft Knowledge Base Articles

These articles are available at

http://support.microsoft.com/

.

321051 Enabling LDAP over SSL with a Third-Party Certificate Authority

299687 MS01-036: Function Exposed By Using LDAP over SSL Could Enable
Passwords to Be Changed

iLO requires a secure connection to communicate with the directory service. This connection
requires the installation of the Microsoft CA. For more information, see the Microsoft
Knowledge Base Article 321051: How to Enable LDAP over SSL with a Third-Party
Certification Authority.

Installing Active Directory

For the schema-free configuration

1.

Disable IPv6, and then install Active Directory, DNS, and the root CA to Windows Server
2008.

2.

Log in to iLO and enter the directory settings and directory user contexts on the
Administration

→Security→Directory page.

For more information, see

“Configuring directory settings” (page 51)

.

3.

Click Apply Settings to save the changes.

4.

Click the Administer Groups button, and then create directory groups for the iLO users.

For more information, see

“Managing iLO users by using the iLO web interface” (page 32)

.

5.

Navigate to the iLO Dedicated Network Port or Shared Network Port General Settings page,
and then enter the environment settings in the Domain Name and Primary DNS server boxes.

For more information, see

“Configuring IPv4 settings” (page 74)

.

For HP extended schema

1.

Disable IPv6, and then install Active Directory, DNS, and the root CA to Windows Server
2008.

2.

Verify that version 2.0 or later of the .NET Framework is installed. This software is required
by the iLO LDAP component.

3.

Install the latest HP Directories Support for ProLiant Management Processors software from

http://www.hp.com/support/ilo3

.

4.

Extend the schema by using the Schema Extender.

For more information, see

“Schema required software” (page 171)

.

5.

Install the HP LDAP component snap-ins.

For more information, see

“Schema required software” (page 171)

.

6.

Create the HP device and HP role.

7.

Log in to iLO and enter the directory settings and directory user contexts on the
Administration

→Security→Directory page.

For more information, see

“Configuring directory settings” (page 51)

.

Setting up HP extended schema directory integration

175

Advertising
Popular Brands
Popular manuals