Servers - General
1748232 Members
3860 Online
108759 Solutions
New Discussion юеВ

Re: ILO login issue with Active directory credential

 
Sakthi1986
Occasional Advisor

ILO login issue with Active directory credential

seems ILO stope working suddenly with Active directory credential and getting below certificate error.

if we reset the ILO by loging with local account, then AD account is started working again, it randomly occuring on multiple servers, there is not custom certificate installed and no changes done to the enviornment,

any solution ?

09/20/2020 15:42 09/20/2020 15:42 1 Browser login failure from: xxxxxxxxxxxxx
09/20/2020 15:42 09/20/2020 15:42 1 LDAP server certificate validation failed.
09/20/2020 13:39 09/20/2020 13:39 1 LDAP server certificate validation failed.
09/20/2020 12:09 09/20/2020 12:09 1 LDAP server certificate validation failed.
09/20/2020 11:58 09/20/2020 11:58 1 Browser login failure from: xxxxxxxxxxxxx
09/20/2020 11:58 09/20/2020 11:58 1 LDAP server certificate validation failed.
09/20/2020 10:06 09/20/2020 10:06 1 LDAP server certificate validation failed.
09/20/2020 07:48 09/20/2020 07:48 1 LDAP server certificate validation failed.
09/20/2020 05:21 09/20/2020 05:21 1 Browser login failure from: xxxxxxxxxxxxx
09/20/2020 05:21 09/20/2020 05:21 1 LDAP server certificate validation failed.

 

8 REPLIES 8
AmRa
HPE Pro

Re: ILO login issue with Active directory credential

Have you checked by Importing an LDAP CA Certificate (Page number 459 - 261)

Please refer HPE iLO 5 2.10 User Guide for Setting up management processors for directories (Page number 459 to 461 )

https://support.hpe.com/hpesc/public/docDisplay?docId=a00092479en_us

I am an HPE Employee.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]

Accept or Kudo
Sakthi1986
Occasional Advisor

Re: ILO login issue with Active directory credential

Hi AmRa,

thanks for your reply, we are not not looking here to implement custom Certificate for each servers ILO, hope the AD integration will work event without implementing custom certificate and it is working fine most of the servers.

as informed we have not applied any custom certificate and not sure why we are getting "LDAP server certificate validation failed" error, also not sure why the same AD authentication working after ILO reset. 

 

AmRa
HPE Pro

Re: ILO login issue with Active directory credential

We have seen similar issue has been fixed by re-generate a CSR certificate or restore iLo to factory default settings and re-configuring iLO.

I am an HPE Employee.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]

Accept or Kudo
Sakthi1986
Occasional Advisor

Re: ILO login issue with Active directory credential

as informed we cannot regenerate CSR since we have not applied the custom certificate, also we have more than 5000 physical server and we cannot keep on reseting the ILO or reconfigure it,

looking for the cause &  permennet fix.

AmRa
HPE Pro

Re: ILO login issue with Active directory credential

For iLO 3 and iLO 4 we found below customer advisory, however for iLO5 there is no HPE knowledge base article available for reported issue. Hence please raise support ticket with HPE support team for further troubleshooting.

https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=emr_na-c04433986

I am an HPE Employee.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]

Accept or Kudo
Sakthi1986
Occasional Advisor

Re: ILO login issue with Active directory credential

Hi AmRa,

seems the KB is not relevent for us, since the user is part of only one group (not in more than 300 group). let us raise support case & work on this issue.

Thanks for your support again.

 

wiju
Occasional Visitor

Re: ILO login issue with Active directory credential

Hi,

we have the same issue.

Are there any solution for tihs?

 

many greetings

Julien

Sunitha_Mod
Moderator

Re: ILO login issue with Active directory credential

@wiju

Hello Julien, 

Thank you for posting! Since you have posted in an old topic and there is no response yet, we would suggest you to create a new topic using the create "New Discussion" button so that the experts can check and assist you further. 

Thanks,
Sunitha G
I'm an HPE employee.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]
Accept or Kudo