HP BL480c HP BladeSystem Onboard Administrator Command Line Interface User Gui - Page 16

• This is the default setting. Local user accounts are directly authenticated against a password for each account stored on the active Onboard Administrator. • Account modifications are automatically synchronized between both Onboard Administrator modules if two are present. • Local users may be disabled if LDAP is enabled, leaving the Administrator account as the only local account that cannot be disabled. LDAP users • The Enable/Disable LDAP is an optional setting. LDAP enabled can be used with local users enabled or disabled. • The Onboard Administrator will use configured LDAP server and search context to request account authentication. • Configuration of the LDAP group will determine the privileges instead of the username. • If a user is configured for multiple groups with different privileges and bay permissions, then the user will have the highest privileges and the combination of all permitted bays. • In version 2.10 or higher, if the user logged into the Onboard Administrator is an LDAP user then the Onboard Administrator enforces the iLO license and requires that the iLO have a Select license before allowing the AutoLogin to iLO. AutoLogin to iLO 2 The following table indicates Onboard Administrator account privileges mapped to iLO privileges when using Onboard Administrator AutoLogin. iLO privileges administrator operator user Administer user accounts X Remote console access X X Virtual power and reset X X Virtual media X X Configure iLO settings X Login to iLO X X X Command line 16