Home » HP Manuals » Desktops » HP BL10e » Manual Viewer

HP BL10e HP ProLiant BL e-Class Integrated Administrator User Guide - Page 175

Key-Based SSH Authentication

UPC - 808736933599

Add to My Manuals
Save this manual to your list of manuals

Page 175 highlights

Performing Advanced Functions If your ftp server does not support anonymous connections, you can specify a username and password by replacing the host part in the previous format: username:password@host Key-Based SSH Authentication Users may install their own public SSH keys for password-less logins to the Integrated Administrators. Only enclosure administrators can use key-based authentication. The CLI features four commands to install and manage the authorized SSH keys. To view any current installed authorized SSH keys, enter: SHOW SSHKEY This command will show any keys currently installed on the Integrated Administrator that are authorized to log in using an enclosure administrator account. To view the fingerprint of the Integrated Administrator host key, enter: SHOW SSHFINGERPRINT This command will show the fingerprint of the host key for the Integrated Administrators. Users may compare this fingerprint with the fingerprint displayed by their SSH client when connecting to the Integrated Administrators to guarantee the authenticity of the Integrated Administrator connection. Users who need guaranteed authenticity will want to use the Integrated Administrator serial console to obtain the SSH fingerprint for the first time. To clear any currently installed authorized SSH keys, enter: CLEAR SSHKEY This command will clear any authorized keys currently installed on the Integrated Administrator that are authorized to log in. After this command has been issued, all users have to enter a valid password in order to log in. HP ProLiant BL e-Class Integrated Administrator User Guide 7-5

Section	Page
HP ProLiant BL e-Class Integrated Administrator User Guide	1
Notice	2
Contents	3
About This Guide	8
Audience Assumptions	8
Important Safety Information	8
Symbols on Equipment	8
Symbols in Text	10
Related Documents	11
Getting Help	11
Technical Support	11
HP Website	12
Authorized Reseller	12
Reader’s Comments	12
Chapter 1: HP ProLiant BL e-Class System Software Features	13
ProLiant BL e-Class Integrated Administrator	13
Integrated Administrator Features	14
Overview of ProLiant BL e-Class Software Tools	17
Chapter 2: Getting Started	21
Reviewing Configuration Tools and Information	21
Identifying the Integrated Administrator Connectors	22
Determining the Integrated Administrator’s Initial IP Address	24
Requirements for Local Client Devices	24
Default Values for the Integrated Administrator	25
Determining the IP Address using the Local Console	25
Setting Up the Web-Based User Interface	27
Additional Steps	31
Help	31
Chapter 3: Web-Based User Interface	32
Accessing the Web-Based User Interface	33
Web-Based Navigation	34
Top Panel	34
Left Panel	36
Deck Panel	37
Enclosure Tab	37
Enclosure Information	38
Network Configuration	44
SNMP Configuration	47
Virtual Buttons	50
System Log	52
Bays Tab	53
Bay List	53
Bay Information	57
Remote Console	59
Virtual Buttons	61
Console Log	62
Administration Tab	63
User List	64
Group List	66
Add User	67
Add Group	70
View/Modify User	73
View/Modify Group	73
Event List Tab	74
Interconnect Tab	76
Chapter 4: Command Line Interface	78
Accessing the Command Line Interface	79
Accessing Remotely through the Management Connector	79
Accessing Locally through the Console Connector	79
Operating the Command Line Interface	80
General Commands	80
General Management Commands	81
User Account Commands	84
Enclosure Network Configuration Commands	89
Enclosure Management Commands	93
Server Bay Management Commands	97
Command Line Event Messages	102
Functionality Exclusive to the Command Line Interface	104
Chapter 5: Setting Up the System	114
User Permissions	116
Customizing the Enclosure Settings	117
Changing the Administrator Password	117
Modifying Enclosure and Rack Names	118
Modifying the Asset Tag Number	120
Modifying the Date and Time	121
Setting Up User Accounts	123
Adding a Group	123
Adding a User	127
Enabling Remote Console Sessions to Server Blades	131
Setting Up AlertMail	135
E-mail Alerts	135
Setting Up IP Security	137
Setting Up Automatic Time Configuration (NTP)	138
Configuring SNMP Support	139
Entering a Community String	139
Modifying the System Location	140
Modifying the System Contact Information	141
Adding Trap Targets	141
Removing Trap Targets	142
Chapter 6: Performing Common Administrative Tasks	143
Managing Server Blade Bays	144
Opening a Remote Console Session to a Server Blade	144
Accessing the ROM-Based Setup Utility for a Server Blade	146
Reviewing Activity for a Server Blade	148
Powering Off the Server Blade	149
Identifying a Server Blade Using the Unit Identification LED	151
Managing the Enclosure	153
Reviewing the Activity of the Enclosure	153
Identifying the Enclosure Using the Unit Identification LED	155
Generating an Enclosure Summary	156
Identifying Problem Components	158
Managing Users	164
Modifying a User’s Rights to Server Blade Bays	164
Creating a New Group with the Updated Access Rights	164
Modifying Group Rights to Server Blade Bays	165
Disabling and Deleting User Accounts	167
Deleting a User’s Account	168
Deleting Group Accounts	169
Chapter 7: Performing Advanced Functions	171
Replicating the Configuration of the Integrated Administrator	172
Administering Security Certificates	174
Creating a Certificate Request	174
Downloading a Security Certificate	174
Key-Based SSH Authentication	175
Configuring Server Blade Boot Order	177
Powering Off the Enclosure	178
Disabling Network Protocols	180
Upgrading the Integrated Administrator Firmware	181
Recovering a Lost Administrator Password	182
Launching Flash Disaster Recovery	183
Appendix A: Command Line Conventions	188
Appendix B: Error Messages	189
Warning Messages	189
Enclosure Warning Messages	190
Server Blade Bay Warning Messages	191
Administration Warning Messages	191
Error Messages	192
Enclosure Error Messages	192
Server Blade Bay Error Messages	192
Administration Error Messages	193
Appendix C: Troubleshooting	196
Appendix D: Event Details	199
Appendix E: Factory Default Settings	201
Enclosure	202
Users	202
Groups	203
Network	203
Protocol	203
Appendix F: Time Zone Settings	205
Universal	206
Africa	207
Asia	208
Europe	210
Oceania	211
Polar	213
The Americas	214
Appendix G: Open Source Availability	217

Match case Limit results 1 per page

Performing Advanced Functions

If your ftp server does not support anonymous connections, you can specify a

username and password by replacing the host part in the previous format:

username:password@host

Key-Based SSH Authentication

Users may install their own public SSH keys for password-less logins to the

Integrated Administrators. Only enclosure administrators can use key-based

authentication. The CLI features four commands to install and manage the authorized

SSH keys.

To view any current installed authorized SSH keys, enter:

SHOW SSHKEY

This command will show any keys currently installed on the Integrated Administrator

that are authorized to log in using an enclosure administrator account.

To view the fingerprint of the Integrated Administrator host key, enter:

SHOW SSHFINGERPRINT

This command will show the fingerprint of the host key for the Integrated

Administrators. Users may compare this fingerprint with the fingerprint displayed by

their SSH client when connecting to the Integrated Administrators to guarantee the

authenticity of the Integrated Administrator connection. Users who need guaranteed

authenticity will want to use the Integrated Administrator serial console to obtain the

SSH fingerprint for the first time.

To clear any currently installed authorized SSH keys, enter:

CLEAR SSHKEY

This command will clear any authorized keys currently installed on the Integrated

Administrator that are authorized to log in. After this command has been issued, all

users have to enter a valid password in order to log in.

HP ProLiant BL e-Class Integrated Administrator User Guide

7-5