•
This is the default setting. Local user accounts are directly authenticated against a password for each
account stored on the active Onboard Administrator.
•
Account modifications are automatically synchronized between both Onboard Administrator
modules if two are present.
•
Local users may be disabled if LDAP is enabled, leaving the Administrator account as the only local
account that cannot be disabled.
LDAP users
•
The Enable/Disable LDAP is an optional setting. LDAP enabled can be used with local users enabled
or disabled.
•
The Onboard Administrator will use configured LDAP server and search context to request account
authentication.
•
Configuration of the LDAP group will determine the privileges instead of the username.
•
If a user is configured for multiple groups with different privileges and bay permissions, then the user
will have the highest privileges and the combination of all permitted bays.
•
In version 2.10 or higher, if the user logged into the Onboard Administrator is an LDAP user then the
Onboard Administrator enforces the iLO2 license and requires that the iLO have a Select license
before allowing the AutoLogin to iLO.
AutoLogin to iLO 2
The following table indicates Onboard Administrator account privileges mapped to iLO 2 privileges when
using Onboard Administrator AutoLogin.
iLO 2 privileges
Administer user accounts
Remote console access
Virtual power and reset
Virtual media
Configure iLO 2 settings
Login to iLO
administrator
operator
X
X
X
X
X
X
X
X
X
X
user
X
Command line 15