- Community Home
- >
- Software
- >
- HPE OneView
- >
- OneView Issue with Active Directory Authentication...
-
- Forums
-
- Advancing Life & Work
- Advantage EX
- Alliances
- Around the Storage Block
- HPE Ezmeral: Uncut
- OEM Solutions
- Servers & Systems: The Right Compute
- Tech Insights
- The Cloud Experience Everywhere
- HPE Blog, Austria, Germany & Switzerland
- Blog HPE, France
- HPE Blog, Italy
- HPE Blog, Japan
- HPE Blog, Middle East
- HPE Blog, Russia
- HPE Blog, Saudi Arabia
- HPE Blog, South Africa
- HPE Blog, UK & Ireland
-
Blogs
- Advancing Life & Work
- Advantage EX
- Alliances
- Around the Storage Block
- HPE Blog, Latin America
- HPE Blog, Middle East
- HPE Blog, Saudi Arabia
- HPE Blog, South Africa
- HPE Blog, UK & Ireland
- HPE Ezmeral: Uncut
- OEM Solutions
- Servers & Systems: The Right Compute
- Tech Insights
- The Cloud Experience Everywhere
-
Information
- Community
- Welcome
- Getting Started
- FAQ
- Ranking Overview
- Rules of Participation
- Tips and Tricks
- Resources
- Announcements
- Email us
- Feedback
- Information Libraries
- Integrated Systems
- Networking
- Servers
- Storage
- Other HPE Sites
- Support Center
- Aruba Airheads Community
- Enterprise.nxt
- HPE Dev Community
- Cloud28+ Community
- Marketplace
-
Forums
-
Blogs
-
Information
-
English
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
02-16-2015 04:54 AM
02-16-2015 04:54 AM
OneView Issue with Active Directory Authentication and Certificate Expiration
I've just hit an issue using Active Directory (LDAPS) Authentication and OneView v1.20
I had previously configured OneView to use Active Directory for authentication, which was all working fine until this morning, whereby I couldn't authenticate any more with any AD credentials.
Investigating further, I discovered that the LDAPS certificates on our AD servers had automatically been renewed (they seem to default to a year of validity), and therefore the directory server certificates used by OneView were not valid anymore. Logging on to OneView with a local admin user and replacing the directory certificates with the new ones fixed the issue.
The error message I was getting when trying to authenticate was the normal "Invalid username or password" one, not giving me any clue that the certificate had expired.
Can I therefore suggest a few OneView enhancements in this area:
1) If using directory authentication and the certificate is no longer valid, produce a logon error that says that.
2) Make the LDAPS certificate verification non-mandatory, the same as the Enclosure Onboard Administrator does, to give the administrator the choice of whether to use it or not.
3) Display decoded certificate information within OneView, the same as the Enclosure Onboard Administrator does, to make tracing this type of issue easier.
4) Maybe even a helpful warning message from OneView that the directory certificates are approaching their expiry date?
- Tags:
- certificate
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
02-17-2015 09:58 AM
02-17-2015 09:58 AM
Re: OneView Issue with Active Directory Authentication and Certificate Expiration
Thank you for your feedback. This information certainly goes towards improving the HP OneView product and experience.
I am an HPE employee
Hewlett Packard Enterprise International
- Communities
- HPE Blogs and Forum
© Copyright 2021 Hewlett Packard Enterprise Development LP