Protocol restrictions – HP Onboard Administrator User Manual
Page 115
Configuring the HP BladeSystem c7000 enclosure and enclosure devices 115
Using these settings, an administrator can configure settings relating to network access to the Onboard
Administrator. These settings are specific to the enclosure and do not affect the network configurations for
server blades.
Protocol restrictions
The Protocol Restrictions subcategory is used to restrict access to the Onboard Administrator. You can select
up to five protocol settings to allow or restrict access to the Onboard Administrator.
•
Enable Web Access (HTTP/HTTPS)—This check box is selected by default. Clearing this check box
disables HTTP/HTTPS access to the Onboard Administrator. Port 80 is used for HTTP, and port 443 is
used for HTTPS.
CAUTION:
Disabling Web Access (HTTP/HTTPS) disconnects all users attached to the Onboard
Administrator through HTTP/HTTPS, including the administrator.
•
Enable Secure Shell—This check box is selected by default. Clearing this check box disables Secure
Shell connections to the Onboard Administrator. SSH is disabled when Two-Factor Authentication is
enabled. Disabling Two-Factor Authentication does not automatically re-enable SSH. To re-enable SSH,
you must select the check box, and then click Apply. Port 22 is used for SSH.
•
Enable Telnet—This check box is not selected by default. Selecting this check box enables Telnet
connections to the Onboard Administrator. Telnet is disabled when Two-Factor Authentication is
enabled. Disabling Two-Factor Authentication does not automatically re-enable Telnet. To re-enable
Telnet, you must select the check box, and then click Apply. Port 23 is used for Telnet.
NOTE:
When the Onboard Administrator is operating in FIPS mode ON/DEBUG, the Telnet
protocol cannot be used.
NOTE:
Telnet is disabled after a factory reset or when Two-Factor Authentication is enabled.
•
Enable XML Reply—This check box is selected by default. This check box enables XML data to be
shared between the Onboard Administrator and other HP management tools such as HP Systems Insight
Manager. To display the information that is shared by the Onboard Administrator if this protocol is
enabled, click View.
•
Enable Enclosure iLO Federation Support—This check box is selected by default. This check box enables
the Onboard Administrator support required to allow peer-to-peer network communication necessary
for iLO Federation among suitably capable iLOs within the enclosure. When iLO Federation support is
enabled for the enclosure, the active Onboard Administrator displays the device bay number of each
bay for which the peer-to-peer network communication required for iLO Federation is enabled.
IMPORTANT:
Enable Enclosure iLO Federation Support only enables Onboard Administrator
support to allow the peer-to-peer network communication necessary for iLO Federation among
iLOs within the enclosure. To fully enable iLO Federation, each iLO must have the appropriate
firmware and be configured to participate in iLO Federation. For more information, see the HP
iLO 4 User Guide at the HP website
.
•
Enable FQDN link support for accessing iLOs and interconnects—This check box is not selected by
default. Selecting this check box causes the Onboard Administrator to display an FQDN-based web
address link in addition to the usual IP-based web address links for accessing an iLO or interconnect
from the Onboard Administrator GUI. The Onboard Administrator queries a DNS server that performs
a reverse lookup for the FQDN of the device and generates the FQDN-based web address (formatted