Edit local user certificate information tab – HP Onboard Administrator User Manual

Configuring the HP BladeSystem c7000 enclosure and enclosure devices 272

Account classification Capabilities

Account name /

Privilege level

Bays selected for this

account

commands

*EBIPA and VLAN features allow access to all bays for an OA operator.

User Enabled must be selected to enable the user account. If a user account is disabled, then all open sessions

for that account are terminated (signed out).
Privilege level change
If a user account privilege level is changed, then all open sessions for that user account are terminated
(signed out). The user must sign in again after the privilege level change.
Check boxes
Selecting the device base bay check box does not give the user permission to a double-dense server without

also checking A and B for that bay. Select only A or B for a device bay if restricting permission to a single
server in a double-denser server blade.
User Permissions

Checkbox

Description

Onboard Administrator Bays Gives the user permissions for the Onboard Administrator bays. If the user

privilege level is Administrator, then All Device Bays and All Interconnect Bays
are automatically selected when Onboard Administrator Bays is selected and

all the checkboxes are grayed out.

All Device Bays

Gives the user permissions for all the device bays.

Selected Device Bays

Gives the user permissions for only the selected device bays.

All Interconnect Bays

Gives the user permissions for all the interconnect bays.

Selected Interconnect Bays

Gives the user permissions for only the selected interconnect bays.

Click Update User to save changes.

Edit Local User Certificate Information tab

When Two-Factor Authentication is enabled, you must have a user certificate to sign in to the Onboard

Administrator. Users with administrator privileges can upload or map a valid certificate to a selected user.

NOTE:

When the Onboard Administrator is operating in FIPS mode, certificates must have a

minimum RSA key length of 2048 bits, and the signature hash algorithm must be SHA1,

SHA-224, SHA-256, SHA-384, or SHA-512.

There are two methods for uploading certificates for use in HP BladeSystem Onboard Administrator:

•

Paste certificate contents into the text field and click Upload.

•

Paste the URL of the certificate into the URL field and click Apply.

When the certificate is successfully uploaded, the SHA1 fingerprint of the user certificate appears.
If you already have a certificate mapped to an account, the SHA1 fingerprint of the certificate appears. Any

users with administrator privileges can delete their certificate and upload a new user certificate. When your