Installing And Configuring Directory Services; Directory Services; Features Supported By Directory Integration - HP Integrity BL870c Operation Manual
Hp integrity ilo 2 operations guide, eleventh edition
Hide thumbs
Also See for Integrity BL870c:
- User's & service manual (179 pages) ,
- Installation manual (31 pages) ,
- Quickspecs (27 pages)
Table of Contents
Advertisement
9 Installing and Configuring Directory Services
This chapter provides information on how to install and configure iLO 2 directory services.
You can install and configure iLO 2 directory services to leverage the benefits of a single point
of administration for iLO 2 user accounts.
Directory Services
The following are benefits of directory integration:
Scalability
Security
Role-based administration
Single point of administration
Immediacy
Reuse of user name and password
Flexibility
Compatibility
Standards
Features Supported by Directory Integration
The iLO 2 directory services functionality enables you to do the following:
•
Authenticate users from a shared, consolidated, scalable user database.
•
Control user privileges (authorization) using the directory service.
•
Use roles in the directory service for group-level administration of iLO 2 and iLO 2 users.
To install directory services for the iLO 2, a schema administrator must extend the directory
schema.
The local user database is retained. You can choose not to use directories, to use a combination
of directories and local accounts, or to use directories exclusively for authentication.
Leverage the directory to support thousands of users on
thousands of iLO 2s.
Robust user password policies are inherited from the
directory. User password complexity, rotation frequency,
and expiration are policy examples.
You can create roles (for instance, clerical, remote control
of the host, complete control), and associate users or user
groups with those roles. When you change a single role,
the change applies to all users and the iLO 2 devices
associated with that role.
You can use native administrative tools, like Microsoft
Management Console (MMC) and ConsoleOne, to
administer the iLO 2 users.
A single change in the directory rolls out immediately to
associated iLO 2s, eliminating the need to script this
process.
You can use existing user accounts and passwords in the
directory without having to record or remember a new set
of credentials for iLO 2.
You can create a single role for a single user on a single
iLO 2; you can create a single role for multiple users on
multiple iLO 2s; or you can use a combination of roles to
best fit your enterprise.
The iLO 2 directory integration applies to the iLO 2
products and supports the popular directories Active
Directory and eDirectory.
The iLO 2 directory support builds on the LDAP 2.0
standard for secure directory access.
Directory Services
179
Advertisement
Table of Contents
Troubleshooting
