ProLiant Servers (ML,DL,SL)
cancel
Showing results for 
Search instead for 
Did you mean: 

iLO integration with AD

passmos
Occasional Contributor

iLO integration with AD

Hi All,

I'm trying to integrate our iLO's, iLO II, RILOE and RILOE II with our AD infrastructure.

I've successfully followed through the installation of the Directory services software, extended the AD schema and installed the relevant snapins. Following that I create two roles (level 1 and level 2) and started teh migration of the iLO devices. The migration utility is pretty straight forward and I managed to take a test sample of iLO's over to AD. Now for the test and the problem!!

It would seem that I can login using my AD login, however the roles I've set up aren't restricting lesser users, it appears that all the roles permissions get added to the device irrespective of what level access they have.

For example USERA is in Level 1 which has permissions to login and remote console only.

USERB is in Level 2 which has full permissions.

Both roles are assigned to iLO1.

When USERA logs in, he has access to everything when he should only have Login and Remote. If I remove the higher role (level 2) then he only has the lower access permissions.

I've tried all sorts to resolve this, firmware upgrades / downgrades, directory software downgrades etc and still can't resolve this issue.

Has anyone ever experienced this?? Do we know of any fixes??

Need help with this as I've got about 400 of these iLO's to do and this is really the only way forward.

Thanks