ILO and Netscape LDAP

Nick Rigby_1 — Thu, 27 Oct 2005 05:32:03 GMT

We have an Netscape LDAP directory within our company.
We have created a group within the LDAP server called:
cn=gb.ilo-admins,ou=lhr-co,l=ea,l=global,o=mycompany.com

On the ILO Directory Page we have filled in the following:
Directory Server Address: userldap.mycompany.com
LDAP Port: 389 (this works querying via softerra LDAP browser)

When running the tests I've entered my username and password (even though the server allows anonymous binding/searching.

The following is the output on the test:
Ping Directory Server Passed
Directory Server IP Address Not run
Directory Server DNS Name Passed
Connect to Directory Server Passed
Connect using SSL Failed

As far as I'm aware we can not do LDAP over SSL. is there anyway to disable LDAP over SSL?

Thanks in advance.

Nick

Re: ILO and Netscape LDAP

David Claypool — Thu, 27 Oct 2005 09:38:00 GMT

If you don't use LDAP over SSL then you defeat the purpose of security because the usernames and passwords can be sniffed on the wire. SSL is therefore a requirement for LDAP access from iLO. If you can't enable SSL for your LDAP server, you might as well just set all your iLO passwords to 'password' because it will be an equivalent level of protection. [Sorry to sound a little sarcastic...]

topic Re: ILO and Netscape LDAP in Server Management - Remote Server Management

ILO and Netscape LDAP

Re: ILO and Netscape LDAP