- Community Home
- >
- Software
- >
- HPE OneView
- >
- Login with credentials from AD trusted forests
-
- Forums
-
- Advancing Life & Work
- Advantage EX
- Alliances
- Around the Storage Block
- HPE Ezmeral: Uncut
- OEM Solutions
- Servers & Systems: The Right Compute
- Tech Insights
- The Cloud Experience Everywhere
- HPE Blog, Austria, Germany & Switzerland
- Blog HPE, France
- HPE Blog, Italy
- HPE Blog, Japan
- HPE Blog, Middle East
- HPE Blog, Russia
- HPE Blog, Saudi Arabia
- HPE Blog, South Africa
- HPE Blog, UK & Ireland
-
Blogs
- Advancing Life & Work
- Advantage EX
- Alliances
- Around the Storage Block
- HPE Blog, Latin America
- HPE Blog, Middle East
- HPE Blog, Saudi Arabia
- HPE Blog, South Africa
- HPE Blog, UK & Ireland
- HPE Ezmeral: Uncut
- OEM Solutions
- Servers & Systems: The Right Compute
- Tech Insights
- The Cloud Experience Everywhere
-
Information
- Community
- Welcome
- Getting Started
- FAQ
- Ranking Overview
- Rules of Participation
- Tips and Tricks
- Resources
- Announcements
- Email us
- Feedback
- Information Libraries
- Integrated Systems
- Networking
- Servers
- Storage
- Other HPE Sites
- Support Center
- Aruba Airheads Community
- Enterprise.nxt
- HPE Dev Community
- Cloud28+ Community
- Marketplace
-
Forums
-
Blogs
-
Information
-
English
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
02-01-2016 07:07 AM
02-01-2016 07:07 AM
Login with credentials from AD trusted forests
Hi,
As far as I have been able to tell, there is no way to allow Active Directory users from one domain the ability to login to oneview using groups from another trusted domain that they are a member of.
For example.
Domain A is a resource domain controlled by one set of administrators.
Domain B is a user domain controlled by a different set of administrators.
Domain A holds the groups that are used by OneView. These groups have users added from Domain B
Is there any way to do this that I have missed? If not, are there any plans to work this into a future release? I am using the 2.0 version of OneView.
Thanks,
Mat
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
02-01-2016 12:25 PM
02-01-2016 12:25 PM
Re: Login with credentials from AD trusted forests
As long as the user accounts in Domain B can bind to a DC in Domain A to perform group validation, it should work. I have not tested this myself. You'd be adding the Domain Security Groups from Domain A, and referencing the DC's in Domain A.
HPE OneView utilizes an LDAP client for AD and OpenLDAP authentication. HPE OneView does not support Kerberos ticketing, which would ceratinly help more in your situation. I can tell you that we are looking at Kerberos support in a future release, but cannot comment on if and when we would introduce support.
I am an HPE employee
Hewlett Packard Enterprise International
- Communities
- HPE Blogs and Forum
© Copyright 2021 Hewlett Packard Enterprise Development LP