HPE Community
BladeSystem - General
1753269 Members
4911 Online
108792 Solutions
New Discussion юеВ

AD/LDAP Integration w/ Onboard Administrator -- Issues

 
Craig A. Liess
Advisor

тАО09-07-2007 07:27 AM

тАО09-07-2007 07:27 AM

Re: AD/LDAP Integration w/ Onboard Administrator -- Issues

I tried putting the DN of my group I want to have rights as the name of the Directory Group in the OA, but still no dice.

I wish this had better error trapping, all I get is 'Invalid username/password'.. no idea if I'm even barking up the right tree here!

-Craig
0 Kudos
Reply
Raghuarch
Honored Contributor

тАО09-07-2007 07:44 AM

тАО09-07-2007 07:44 AM

Re: AD/LDAP Integration w/ Onboard Administrator -- Issues

Hi Craig,

This is not a solution but you can check the for the right tree.

For this you should have iLO Advanced License.

when you configure the directory setting in the
iLO there is a button called test settings. this one will let you know where you are going wrong.

Please refer to the attachment.

Regards,
Raghuarch
0 Kudos
Reply
Craig A. Liess
Advisor

тАО09-07-2007 07:58 AM

тАО09-07-2007 07:58 AM

Re: AD/LDAP Integration w/ Onboard Administrator -- Issues

Dang, that looks EXACTLY like what we need. Unfortunately, we don't have any other iLO2 than what is on these bl456s :(

I tried logging into the iLO of one of the blades just to see if I coiuld get to those settings and I can get all the way up until the Directory tab, at which time it tells me I'm not licensed for it.

Bummer!

-Craig
0 Kudos
Reply
Raghuarch
Honored Contributor

тАО09-07-2007 08:59 AM

тАО09-07-2007 08:59 AM

Re: AD/LDAP Integration w/ Onboard Administrator -- Issues

Hi Craig,

if you have below configuration:
OU=Groups,DC=xxxxxxxxx,DC=com

Try
Search Context 1: OU=Groups, DC=xxxxx,DC=Com
Search Context 2: @xxxxxxx

when you log on try giving the display name of the user.
Example: user1 is the display name for the user1 if it doesn't work.
try giving the logon name: user1@xxxxxx.com

you can get the logon name and display name by right click and select properties on the user in the Directory.

Regards,
Raghuarch
0 Kudos
Reply
jmiller_2
New Member

тАО09-10-2007 01:41 AM

тАО09-10-2007 01:41 AM

Re: AD/LDAP Integration w/ Onboard Administrator -- Issues

The info I gave you earlier was for the OA in the chassis. If you do not have the Lic code for the blade iLo you can't use LDAP to go directly to the blade iLo's. The OA's give you full passthrough authentication to the blades.
0 Kudos
Reply
Raghuarch
Honored Contributor

тАО10-05-2007 03:21 AM

тАО10-05-2007 03:21 AM

Re: AD/LDAP Integration w/ Onboard Administrator -- Issues

Hi Craig,

Did it work what did you try.
It will be helpful if you can share the steps to make it work.

Regards,
Raghuarch
0 Kudos
Reply
Craig A. Liess
Advisor

тАО10-09-2007 12:36 AM

тАО10-09-2007 12:36 AM

Re: AD/LDAP Integration w/ Onboard Administrator -- Issues

No dice on getting this to work. We've given up and will try again once newer OA firmware comes out.

Every other device we have on our network that we've set up AD or RADIUS support for works like a champ.. except this.

Thanks for trying, though, it is appreciated.

-Craig
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.