- Community Home
- >
- Servers and Operating Systems
- >
- HPE ProLiant
- >
- Server Management - Remote Server Management
- >
- Re: Set-HPEiLODirectoryGroup, remove login for aut...
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-29-2020 01:55 AM
05-29-2020 01:55 AM
Hi all,
Does anyone know if this is a bug/power feature or how to make the following scenario possible?
I'm trying to disable login for authenticated users, using LDAP as authentication method. I have DL380 Gen10's with iLO5 (fw 1.39-1.45) using HPE iLO cmdlets v3.0.0.0 (I beleive this worked in v2.2.0.0).
Whichever way I have attacked this, I always ends up with a partial result and the change is not reflected in the GUI. Note that I'm using the administrator account to make changes.
$iLOConnection | Set-HPEiLODirectoryGroup -GroupName "Authenticated Users" -GroupSID 'S-1-5-11' -LoginPrivilege 'No' -Force
IP Hostname Status StatusInfo
-- -------- ------ ----------
1.1.1.1 PARTIAL HPE.Framework.Core.StatusInfo
Is there a way around this or should I simply remove the group instead (not prefered)?
Thanks
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-02-2020 01:15 AM
06-02-2020 01:15 AM
Re: Set-HPEiLODirectoryGroup, remove login for authenticated users...
hello
right now no way to disable login for authenticated users, try remove the group and verify the same
I am an HPE Employee
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-02-2020 02:48 AM
06-02-2020 02:48 AM
SolutionWe are able to reproduce the scenario only when login privilege is set to yes and all other privilege is set to No.
The behavior is an expected behavior for redfish and RIBCL i.e. when there is no other privilege for a group, changing the login privilege to “No” is not permitted by Redfish/RIBCL.
I am an HPE Employee
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-03-2020 01:46 AM
06-03-2020 01:46 AM
Re: Set-HPEiLODirectoryGroup, remove login for authenticated users...
Hi,
I will have to change approach and remove the group instead. We do not wish our domain users to be able to login and have view access.
Thank you for confirming that this is a power feature.