User login using directory services, Directory-enabled remote management, Directory-enabled – HP Integrated Lights-Out 3 User Manual
Page 190: Directory-enabled remote
•
Virtual Media—Enables the user to access the iLO Virtual Media functionality.
•
Server Reset and Power—Enables the user to access the iLO Virtual Power button to remotely
reset the server or power it down.
•
Administer Local User Accounts—Enables the user to administer accounts. Users can modify
their account settings, modify other user account settings, add users, and delete users.
•
Administer Local Device Settings—Enables the user to configure the iLO management processor
settings.
User rights to any LOM device are calculated as the sum of all rights assigned by all roles in which
the user is a member, and in which the iLO device is a managed device. Using the example in
, if a user is in both the remoteAdmins and remoteMonitors roles, the user will have all
rights, because the remoteAdmins role has all rights.
User login using directory services
The Login Name box on the iLO login page accepts directory users and local users.
The maximum length of the login name is 39 characters for local users and 256 characters for
directory users.
•
Directory users—The following formats are supported:
LDAP fully distinguished names
Example: CN=John Smith,CN=Users,DC=HP,DC=COM, or @HP.com
◦
The short form of the login name does not notify the directory which domain you are
trying to access. You must provide the domain name or use the LDAP DN of your account.
◦
DOMAIN\user name
form (Active Directory only)
Example: HP\jsmith
◦
username@domain
form (Active Directory only)
Example: [email protected]
Directory users specified using the @ searchable form might be located in one of three
searchable contexts, which are configured on the Security
→Directory page.
◦
Username format
Example: John Smith
Directory users specified using the username format might be located in one of three
searchable contexts, which are configured on the Security
→Directory page.
•
Local users—Enter the Login Name of your iLO local user account.
Directory-enabled remote management
This section is for administrators who are familiar with directory services and the iLO product and
want to use the HP schema directory integration option for iLO. You must be familiar with directory
services.
Directory-enabled remote management enables you to do the following:
•
Create Lights-Out Management objects
You must create one LOM device object to represent each device that will use the directory
service to authenticate and authorize users. For information on creating LOM device objects
for Active Directory and eDirectory, see
“Directory services” (page 160)
. In general, you can
use the snap-ins that HP has provided to create objects. It is useful to give the LOM device
190 Directory services