HP Integrity BL870c HP Integrity iLO 2 Operations Guide, Eleventh Edition - Page 179
Installing and Configuring Directory Services, Directory Services
![]() |
View all HP Integrity BL870c manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 179 highlights
9 Installing and Configuring Directory Services This chapter provides information on how to install and configure iLO 2 directory services. You can install and configure iLO 2 directory services to leverage the benefits of a single point of administration for iLO 2 user accounts. Directory Services The following are benefits of directory integration: Scalability Leverage the directory to support thousands of users on thousands of iLO 2s. Security Robust user password policies are inherited from the directory. User password complexity, rotation frequency, and expiration are policy examples. Role-based administration You can create roles (for instance, clerical, remote control of the host, complete control), and associate users or user groups with those roles. When you change a single role, the change applies to all users and the iLO 2 devices associated with that role. Single point of administration You can use native administrative tools, like Microsoft Management Console (MMC) and ConsoleOne, to administer the iLO 2 users. Immediacy A single change in the directory rolls out immediately to associated iLO 2s, eliminating the need to script this process. Reuse of user name and password You can use existing user accounts and passwords in the directory without having to record or remember a new set of credentials for iLO 2. Flexibility You can create a single role for a single user on a single iLO 2; you can create a single role for multiple users on multiple iLO 2s; or you can use a combination of roles to best fit your enterprise. Compatibility The iLO 2 directory integration applies to the iLO 2 products and supports the popular directories Active Directory and eDirectory. Standards The iLO 2 directory support builds on the LDAP 2.0 standard for secure directory access. Features Supported by Directory Integration The iLO 2 directory services functionality enables you to do the following: • Authenticate users from a shared, consolidated, scalable user database. • Control user privileges (authorization) using the directory service. • Use roles in the directory service for group-level administration of iLO 2 and iLO 2 users. To install directory services for the iLO 2, a schema administrator must extend the directory schema. The local user database is retained. You can choose not to use directories, to use a combination of directories and local accounts, or to use directories exclusively for authentication. Directory Services 179
![](/manual_guide/products/hewlettpackard-integrity-bl870c-hp-integrity-ilo-2-operations-guide-eleventh-edition-30e0a7d/179.png)