- Community Home
- >
- Servers and Operating Systems
- >
- HPE BladeSystem
- >
- BladeSystem - General
- >
- AD/LDAP Integration w/ Onboard Administrator -- Is...
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-28-2007 01:57 AM
тАО08-28-2007 01:57 AM
AD/LDAP Integration w/ Onboard Administrator -- Issues
We're in the process of bringing up a c7000 blade enclosure and our last task before putting it into production is to configure Active Directory authentication with our Onboard Administrator modules.
At this point, we're just trying to authenticate with a single domain controller, per the OA configuration guide.
Everything appears to be set up correctly (certificate uploaded, search context pointed at the OU where our group resides, domain group created in the OA matching our AD group, etc.)
Both of our OA modules are on v2.02, which I believe is the latest.
All of the troubleshooting steps in the OA guide come back as positive, so I think we're pretty close, just missing something small here.
Any help would be greatly appreciated. Thanks!
-Craig
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-28-2007 06:49 AM
тАО08-28-2007 06:49 AM
Re: AD/LDAP Integration w/ Onboard Administrator -- Issues
Please refer to page 181 it has detailed description of the steps.
http://h20000.www2.hp.com/bc/docs/support/SupportManual/c00702815/c00702815.pdf
Regards,
Raghuarch
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-28-2007 06:57 AM
тАО08-28-2007 06:57 AM
Re: AD/LDAP Integration w/ Onboard Administrator -- Issues
There's really no good error reporting for this, either.. it just says "invalid username/password."
-Craig
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-28-2007 08:37 AM
тАО08-28-2007 08:37 AM
Re: AD/LDAP Integration w/ Onboard Administrator -- Issues
Just to make sure, You are using your ACCOUNT NAME(admin profile) to login & not the USERNAME.
Regards,
James.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-28-2007 09:59 AM
тАО08-28-2007 09:59 AM
Re: AD/LDAP Integration w/ Onboard Administrator -- Issues
I am listing some of the possible typo or other error which may occur.
In OA:
verify The IP address is Correct in Directory Server Address.
Verify the Search Context is correct.
Verify the group for which user is member is present under the Directory Groups of OA Page.
In Active Directory.
Verify the user is a member of Valid group.
Verify the user is member of Domain users and the new group you created.
Try installing a certificate this is Optional, LDAP should work even without a certificate.
Regards,
Raghuarch
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-29-2007 02:23 AM
тАО08-29-2007 02:23 AM
Re: AD/LDAP Integration w/ Onboard Administrator -- Issues
For search context, we're just having it look the default 'Groups' folder, so we're using the following in the Search Context field:
OU=Groups,DC=xxxxxxxxx,DC=com
The group is in 'Directory Groups' and in the above directory path. The accounts we're trying to use are in the AD group (this is the same group we use for other devices, like our IPKVMs, for example.)
Have tried checking the 'Use NT Account Name Mapping' check box as well to no avail.
-Craig
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-29-2007 06:35 AM
тАО08-29-2007 06:35 AM
Re: AD/LDAP Integration w/ Onboard Administrator -- Issues
Can you try these.
CN=Groups,DC=xxxxxxxxx,DC=com
or
CN=Users,DC=xxxxxxxxx,DC=com
Regards,
Raghuarch
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-29-2007 08:09 AM
тАО08-29-2007 08:09 AM
Re: AD/LDAP Integration w/ Onboard Administrator -- Issues
-Craig
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-07-2007 07:11 AM
тАО09-07-2007 07:11 AM
Re: AD/LDAP Integration w/ Onboard Administrator -- Issues
Directory settings
server address...DNS alias for redundancy
port 636
Search1 ou=group name,ou=city,o=organization
search2 o=organization
Group
cn=my group,ou=groups,ou=city,o=organization
privilege level admin or whatever and then select the components in the bottom
good luck...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-07-2007 07:22 AM
тАО09-07-2007 07:22 AM
Re: AD/LDAP Integration w/ Onboard Administrator -- Issues
-Craig