HPE Community
Servers - General
1824916 Members
3747 Online
109677 Solutions
New Discussion

iLO Amplifier Pack AD Integration

 
Raic
Occasional Visitor

‎03-23-2022 01:30 PM - last edited on ‎03-28-2022 06:01 PM by

‎03-23-2022 01:30 PM - last edited on ‎03-28-2022 06:01 PM by

iLO Amplifier Pack AD Integration

I'm trying to setup AD integration in iLO Amplifier Pack but not able to do it. After setup all necessary fields, I kept receiving the following error message while login -

"Log in with authorized user name and password credential"

 

I tried many possible settings, but can't figure out what I did wrong....

I'm on iLO Amplifier Pack v2.1.0

Security Setting >Directory settings :

Base DN: DC=domainname,DC=local

DirectoryServer Address: ad.domainname.local

directory server port: 636

Secure connection: checked

 

Under the User Administration > Directory Group, I have something like this:

OU=Admin Group,DC=domainname,DC=local

 

Now, when I logged in with a user account under the "Admin Group" OU, I got the error message of :

"Log in with authorized user name and password credential"

 

But when I looked at AD security log, I could see 5156 & 4624 events which indicated a success authentication from the iLO Amplifier Pack server.

So I exported the syslog from iLO Amplifier Pack server and looked at it, then I found lots of the following log events:

Mar 23 19:40:47 infosight securitymgrd: LDAP Authentication Successful for : domainname\useraccount

Mar 23 19:40:47 infosight iLO Amplifier Pack: CONFIG_GROUPINFO_ALL_GET

Mar 23 19:40:47 infosight securitymgrd: Base DN : DC=domainanme,DC=local

Mar 23 19:40:47 infosight securitymgrd: Initial Filter1 failed : (&(objectClass=user)(|(sAMAccountName=useraccount)(userPrincipalName=domainnameuseraccount)(distinguishedName=domainnameuseraccount))(memberOf=OU=Admin Group,DC=domainname,DC=local))

Mar 23 19:40:47 infosight securitymgrd: Searched with cn filter : (&(objectClass=user)(cn=)(memberof=OU=Admin Group,DC=domainname,DC=local))

 

I believe the log from the iLO Amplifier Pack again proved that the AD authentication did complete successfully. However, I'm not sure why it followed with the "initial filter1 failed". Is it something I missed in the Base DN configuration or something?

Anyone has any idea?

 

0 Kudos
Reply
2 REPLIES 2
support_s
System Recommended

‎03-23-2022 02:30 PM

‎03-23-2022 02:30 PM

Query: iLO Amplifier Pack AD Integration

System recommended content:

1. iLO Amplifier Pack

2. Advisory: HPE Integrated Lights-Out - High CPU Usage for iLO Amplifier Pack Version 1.80

 

Please click on "Thumbs Up/Kudo" icon to give a "Kudo".

 

Thank you for being a HPE valuable community member.


Accept or Kudo

Reply
support_s
System Recommended

‎03-27-2022 09:16 PM

‎03-27-2022 09:16 PM

Re: iLO Amplifier Pack AD Integration

Hi, 

 

Have a look at the below. 

 

Configuring Directory Server Settings

Procedure

  1. Click Configuration and Settings from the left navigation menu, click Security Settings, and then click the Directory tab.

  2. To enable the directory server settings, select the Enabled check box.

  3. Select the Active Directory from the Directory Type field.

  4. Enter the base distinguished name in the Base DN field.

    Base DN format (for example, OU=My_OU,DC=Domain,DC=COM).

    NOTE: To avoid LDAP timeout, users are advised to use a more specific base DN value. For example, instead of using "DC=domain,DC=com", use specific values such as "CN=path1,DC=domain,DC=com" or

    "OU=path2,DC=domain,DC=com" or "CN=path1,OU=path2,DC=domain,DC=com" (assuming the users are present in this specified path).

  5. Enter the IPv4 or IPv6 address or FQDN in the Directory Server Address field.

  6. Select the port number from the Directory Server Port field.

  7. To enable the iLO Amplifier Pack communication with LDAP server using secure protocols, select the Use secure communication check box.

  8. Click Save.

 

https://support.hpe.com/hpesc/public/docDisplay?docId=a00030240en_us&docLocale=en_US


Accept or Kudo

0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.