Two-factor authentication – HP Onboard Administrator User Manual

Configuring the HP BladeSystem c7000 enclosure and enclosure devices 288

NOTE:

Onboard Administrator 4.11 and later contains HP SSO application support for

determining the minimum SSO certificate requirements.

Two-Factor Authentication

Two-Factor Authentication Settings tab

IMPORTANT:

Onboard Administrator must be configured in Virtual Connect mode before

enabling Two-Factor Authentication when using Virtual Connect Manager and Two-Factor
Authentication.

When Two-Factor Authentication is enabled, only users with a valid user certificate are allowed to sign in to

Onboard Administrator. A valid user certificate is signed by a trusted Certificate Authority and is mapped to

the respective user on the Onboard Administrator.
To enable Two-Factor Authentication for user authentication during sign in, select Enable Two-Factor

Authentication. When Two-Factor Authentication is enabled, SSH and Telnet access is disabled by default.
Disabling Two-Factor Authentication does not automatically re-enable SSH and Telnet. You must go to the

Network Access screen, and then select Enable Secure Shell and Enable Telnet.
To enable the Onboard Administrator to verify with the Certifying Authority that the certificate being used has

been added to the certificate revocation list (CRL), select Check for Certificate Revocation. If the certificate is
on the CRL, the sign in is denied.
Certificate Owner Field
You can configure the Onboard Administrator to use the user principle name in the SAN by selecting SAN

or to use the certificate subject name by selecting Subject when authenticating directory users with a directory
server.
To save settings, click Apply.

Two-Factor Authentication Certificate Information tab

This screen displays all Insight Remote Control server certificates trusted by the Onboard Administrator. A

maximum of 12 certificates can be uploaded to the Onboard Administrator.

Row

Description

Certificate Version

Version number of current certificate

Issuer Organization

Name of the organization that issued the certificate

Issuer Organization Unit

Name of the organizational unit that issued the certificate

Issued By

The certificate authority that issued the certificate

Subject Organization

Subject name

Issued To

Organization to whom the certificate was issued

Valid From

The date from which the certificate is valid

Valid Upto

The date the certificate expires

Serial Number

The serial number assigned to the certificate by the certificate authority

Extension Count

Number of extensions in the certificate