HP Integrated Lights-Out manual Directory Services 157

Page 157

Directory Services

157

Example: Creating and Configuring Directory Objects for Use with iLO in Active Directory

The following example shows how to set up roles and HP devices in an enterprise directory with the domain testdomain.local, which consists of two organizational units, Roles and RILOES.

Assume that a company has an enterprise directory including the domain testdomain.local, arranged as shown in the following screen.

1.Create an organizational unit, which will contain the Lights-Out Devices managed by the domain. In this example, two organizational units are created called Roles and RILOES.

2.Use the HP provided Active Directory Users and Computers snap-ins to create Lights-Out Management objects in the RILOES organizational unit for several iLO devices.

Image 157

Contents HP Integrated Lights-Out User Guide Audience Assumptions Contents User Guide Integrated Lights-Out ILO Security 135 Certificate Services 189 Insight Manager 7 Integration 223 Lights-Out DOS Utility 249 Login Modglobalsettings Moddiagport Settings ILO Parameters 331 Contents Technical Support 397 New in This Version Operational OverviewThis Section Network Connection Overview Usage ModelSupported Server Operating System Software Supported Browsers Configuring Linux Font Size Linux Browser ConfigurationPage ILO Configuration Options Configuring iLOILO Rbsu Browser-Based Setup Scripted Setup Installing iLO Device DriversSelect Software and Drivers Installing or Updating the iLO Drivers for MicrosoftILO Pre-requisite Files for Microsoft Novell NetWare Server Driver Support Installing or Updating iLO Drivers for NetWareILO Pre-Requisite Files for NetWare ILO Pre-requisite Files for Red Hat and SuSE Linux Files Red Hat Linux and SuSE Linux Server Driver SupportInstaling or Updating iLO Linux and SuSE Drivers Enabling iLO Advanced Functionality ILO Advanced Evaluation License Activating iLO Advanced Features Using a BrowserILO Advanced License Options User Guide Integrated Lights-Out Activating iLO Advanced Using Scripting ProLiant BL p-Class ConfigurationProLiant BL p-Class User Requirements Static IP Bay ConfigurationConfiguring Static IP Bay Settings Configuring a ProLiant BL p-Class Blade EnclosureUser Guide Integrated Lights-Out ProLiant BL p-Class Advanced Configuration Parameters ProLiant BL p-Class Standard Configuration ParametersRibcl Rackinfo Commands Enable iLO IP Address AssignmentGetting Static IP Bay Configuration Settings Ribcl Rackinfo Command ExamplesModifying Static IP Bay Configuration Settings Integration with Riloe II Accessory Boards Logging in to iLO for the First Time Using iLOLogging in to iLO for the First Time Using a Browser Using iLO User Guide Integrated Lights-Out Using iLO Help Progressive Delays for Failed Browser Login AttemptsStatus Summary System StatusILO Status Server Status ILO Event Log Integrated Management Log Post Diagnostic Results for the Host Server Server and iLO DiagnosticsVirtual NMI Button Nvram Environment Variables ListingILO Self-Test Results Remote Console Option Remote ConsoleRemote Console Information Option Recommended Client Settings Enhanced Features of the Remote ConsoleOptimizing Performance for Graphical Remote Console Display PropertiesRecommended Server Settings Remote Console Linux SettingsRemote Console Mouse PropertiesMicrosoft Windows Server 2003 Settings Microsoft Windows NT 4.0 and Windows 2000 SettingsNovell NetWare Settings Red Hat Linux and SuSE Linux Server SettingsRemote Console Hot Keys Supported Hot Keys Remote Console Single-Cursor Single- and Dual-Cursor Modes for Graphical Remote ConsoleRemote Console Dual-Cursor Virtual Devices Virtual Power Using iLO Virtual Media MS-DOS Operating System USB SupportUSB USB CD USB CD2 ILO Virtual Floppy Using iLO Virtual Media DevicesSelect Local Floppy Drive Click Connect Access iLO through a browser Connect Click Create Disk Image Select Local CD-ROM Drive ILO Virtual CD-ROMUsing an Image File Virtual Media CD-ROM Operating System Notes Mounting USB Virtual Media CD in NetWare Mount /dev/scd0 /mnt/cdrom -t iso9660 Virtual Media Composite Device Support Select Local Floppy Drive ILO Virtual Media Privilege Virtual Media Applet TimeoutVirtual Media Scripting Command Line Input Result Virtual Media Image Files Scripting Web Server RequirementsCGI Helper Application Virtual Indicators Windows EMS Console Virtual Serial PortVirtual Serial Port and Linux Security InformationUser Administration AdministrationLinux End-to-End Support Adding a New User Click View/Modify User Viewing or Modifying an Existing Users SettingsClick Global Settings Global SettingsDeleting a User User Guide Integrated Lights-Out Network Settings Click Network Settings Using iLO ILO Diagnostic Port Configuration Parameters Recovering from a Failed iLO Firmware Update SNMP/Insight Manager SettingsEnabling Snmp Alerts Generating Test Alerts Click Apply SettingsConfigure Insight Manager Integration Upgrade iLO FirmwareClick Send firmware image Licensing Certificate AdministrationProLiant BL p-Class Advanced Management Directory SettingsUser Guide Integrated Lights-Out Rack Settings Server Blade Management Module Power Management ModuleILO Control of ProLiant BL p-Class Server LEDs Redundant Power Management ModuleHot-Plug Keyboard Insufficient Power NotificationKeyboard Definitions Server Post TrackingHot-Plug Keyboard Recommended Usage Hot-Plug Keyboard TroubleshootingUser Guide Integrated Lights-Out Terminal Services Client Requirements Terminal Services Pass-Through OptionWindows RDP Pass-Through Service Terminal Services Pass-Through Installation Windows 2000 Terminal Services Port Change Enabling the Terminal Services Pass-Through OptionTerminal Services Warning Message Terminal Services Pass-Through StatusTerminal Services Button Display Remote Console and Terminal Services ClientsComputerPropertiesRemoteRemote Desktop Terminal Services TroubleshootingManagerMultifunction Adapters Telnet Support HP ProLiant Essentials Rapid Deployment Pack IntegrationViewerApplication Telnet Simple Command Set Using TelnetTelnet Security Supported Key SequencesILO VT100+ Key Map Altk Altlowerj Linux Codes for the F-Keys VT100+ Codes for the F-KeysUsing SSH Using Secure ShellSecure Shell Using OpenSSH ILO Supported SSH FeaturesUsing PuTTY ILO Shared Network Port Requirements ILO Shared Network PortILO Shared Management Port Features and Restrictions Enabling the iLO Shared Network Port Feature Select AdministrationNetwork Settings Re-enabling the Dedicated iLO Management Port Select NetworkNICTCP/IP, and press the Enter key Command Line InterfaceEscape CLI CommandsHelp Remcons PowerExit VspPage ILO Security Security FeaturesGeneral Security Guidelines Encryption ILO Security Override Switch AdministrationUser Accounts Privileges Login SecurityGlobal Security Settings Password GuidelinesCertificates Securing Rbsu Page Benefits of Directory Integration Directory ServicesFeatures Supported by Directory Integration Installing Directory Services Schema Documentation Directory Services Support Schema Required Software Schema Installer EDirectory Installation PrerequisitesSchema Preview Setup Directory Services 151 Results Management Snap-In InstallerActive Directory Installation Prerequisites Directory Services for Active DirectoryDirectory Services Preparation for Active Directory Start MMC Install the Active Directory Schema snap-in in MMC Snap-In Installation and Initialization for Active Directory Directory Services 157 User Guide Integrated Lights-Out Directory Services 159 User Guide Integrated Lights-Out Directory Services 161 Directory Services Objects Active Directory Snap-Ins HP Devices Active Directory Role Restrictions MembersUser Guide Integrated Lights-Out Time Restrictions Enforced Client IP Address or DNS Name Access Remove Active Directory Lights-Out Management Snap-in Installation and Initialization for eDirectory Directory Services for eDirectoryUser Guide Integrated Lights-Out Directory Services 173 Apply Directory Services 175 Directory Services Objects for eDirectory Role Managed Devices Role Restrictions EDirectory Role Restrictions Time Restrictions Delete Lights-Out Management Directory Services 183 Configuring Directory Settings Directory Services 185 Directory Tests User Login Using Directory Services User Guide Integrated Lights-Out Introduction to Certificate Services Certificate ServicesInstalling Certificate Services Configuring Automatic Certificate Request Verifying Directory ServicesCertificate Services 191 Page Introduction to Directory-Enabled Remote Management Directory-Enabled Remote ManagementUsing Bulk Import Tools Using Existing Groups Using Multiple Roles AdminUserAdminRole Server UserRole Restricting Roles Creating Roles to Follow Organizational StructureRole Time Restrictions IP Address and Subnet Mask Restrictions IP Address Range RestrictionsDNS-Based Restrictions Role Address Restrictions How Directory Login Restrictions are EnforcedUser Address Restrictions How User Time Restrictions are EnforcedCreating Multiple Restrictions and Roles Directory-Enabled Remote Management 203 User Guide Integrated Lights-Out Introduction to Lights-Out Migration Utilities Lights-Out Directories Migration UtilitiesCompatibility Pre-Migration ChecklistHP Lights-Out Directory Package Finding Management Processors Hpqlomig OperationLights-Out Directories Migration Utilities 209 Upgrading Firmware on Management Processors Enter your Login NamePassword and click FindLights-Out Directories Migration Utilities 211 Naming Management Processors Select either Use Network Address or Create Name Using IndexConfiguring Directories Browse Click Update DirectorySetting Up Management Processors for Directories Click Configure Hpqlomgc Operation Firmware version is validated and updated if necessary Launching Hpqlomgc Using Application LaunchManagement processor directory settings are updated Directory is updatedLights-Out Directories Migration Utilities 219 Hpqlomgc Command Language Iloconfig Page Integrating iLO with Insight Manager Insight Manager 7 IntegrationIdentification and Association Functional OverviewQueries StatusLinks Configuring Identification of iLO Insight Manager 7 Integration 227 Receiving Snmp Alerts in Insight ManagerPort Matching Insight Manager 7 Integration 229 User Guide Integrated Lights-Out ProLiant BL p-Class Rack Visualization User Guide Integrated Lights-Out Integrating iLO with Systems Insight Manager Systems Insight Manager IntegrationSystems Insight Manager Functional Overview System Insight Manager Status System Insight Manager Identification and AssociationSystem Insight Manager Links Configuring System Insight Manager Identification of iLOSystem Insight Manager Systems Lists Receiving Snmp Alerts in Systems Insight Manager System Insight Manager Port Matching Systems Insight Manager Integration 239 Page Lights-Out Configuration Utility Group Administration and iLO Scripting\PROGRAM FILES\INSIGHT MANAGER\HP\SYTEMS Select Management Processor and click OK Query Definition in Insight ManagerApplication Launch Using Insight Manager Click ToolsCustom CommandsNew Custom Command Create a Custom CommandCreate a Customized List Click either Schedule or Run Now Create a TaskLights-Out Configuration Utility Parameters Batch Processing Using the Lights-Out Configuration UtilityCpqlocfg Overview of the Lights-Out DOS Utility Lights-Out DOS UtilityCpqlodos Recommended Usage Command Line ArgumentsCpqlodos General Guidelines Lights-Out DOS Utility 251 Cpqlodos Runtime Error Ribcl XML Commands for CpqlodosCpqlodos Parameter Adduser Parameters Adduser Runtime ErrorsSetlicense Parameter Setlicense Runtime ErrorsPerl Scripting Using Perl with the XML Scripting InterfaceXML Enhancements XML script modification Opening an SSL Connection Sending the XML Header and Script Body Perl Scripting 259 User Guide Integrated Lights-Out Hponcfg Hponcfg Online Configuration UtilityHponcfg Supported Operating Systems Hponcfg Requirements Hponcfg Installation and UsageLinux Server Installation Windows Server InstallationUsing Hponcfg Hponcfg Command Line ParametersHponcfg Usage Model Obtaining an Entire ConfigurationSample adduser.xml input file Creating a User AccountHponcfg Online Configuration Utility Page Remote Insight Command Language Ribcl and ProLiant BL p-Class Servers Overview of the Remote Insight Board Command LanguageXML Header Ribcl Sample Scripts Ribcl General GuidelinesData Types String Response DefinitionsSpecific String Boolean StringRibcl Ribcl Runtime ErrorsRibcl Parameter Login Parameters LoginLogin Runtime Errors Userinfo Userinfo Runtime ErrorUserinfo Parameter Adduser Parameters AdduserRemote Insight Command Language Adduser Runtime Errors Deleteuser Deleteuser Runtime ErrorsDeleteuser Parameter Getuser Getuser Runtime ErrorsGetuser Parameter Getuser Return Messages ModuserModuser Parameters Moduser Runtime Errors Getallusers Getallusers Runtime ErrorGetallusers Parameters Getallusers Return MessagesGetalluserinfo Getalluserinfo Runtime ErrorsGetalluserinfo Parameters Getalluserinfo Return Messages RibinfoRibinfo Runtime Errors ResetribResetrib Parameters Resetrib Runtime ErrorsGetnetworksettings Parameters GetnetworksettingsGetnetworksettings Runtime Errors Getnetworksettings Return MessagesDhcpwinsserver VALUE=Y Regwinsserver VALUE=Y ModnetworksettingsModnetworksettings /RIBINFO Login Ribcl Modnetworksettings Parameters User Guide Integrated Lights-Out Modnetworksettings Runtime Errors GetglobalsettingsGetglobalsettings Parameters Getglobalsettings Runtime Errors ModglobalsettingsGetglobalsettings Return Messages Modglobalsettings Parameters User Guide Integrated Lights-Out Remote Insight Command Language Modglobalsettings Runtime Errors GetsnmpimsettingsGetsnmpimsettings Parameters Getsnmpimsettings Runtime ErrorsModsnmpimsettings Parameters ModsnmpimsettingsModsnmpimsettings Runtime Errors Cleareventlog Cleareventlog Runtime ErrorsCleareventlog Parameters Updateribfirmware Parameters UpdateribfirmwareUpdateribfirmware Runtime Errors Getfwversion Getfwversion Runtime ErrorsGetfwversion Parameters Getfwversion Return MessagesHotkeyconfig Parameters HotkeyconfigLicense Hotkeyconfig Runtime ErrorsLicense Parameters License Runtime ErrorsDirinfo Runtime Errors GetdirconfigDirinfo Dirinfo ParametersGetdirconfig Runtime Errors Getdirconfig ParametersGetdirconfig Return Messages Moddirconfig Parameters ModdirconfigRackinfo Moddirconfig Runtime ErrorsModbladerack Rackinfo Runtime ErrorsRackinfo Parameters Modbladerack Parameters Modbladerack Runtime Errors GetdiagportsettingsGetdiagportsettings Parameters Getdiagportsettings Runtime ErrorsGetdiagportsettings Return Messages ModdiagportsettingsModdiagportsettings Parameters Gettopology Moddiagportsettings Runtime ErrorsGettopology Parameters ServerinfoGettopology Return Message Serverinfo Runtime Errors GethostpowerstatusServerinfo Parameter Gethostpowerstatus Parameters SethostpowerGethostpowerstatus Runtime Errors Gethostpowerstatus Return MessagesSethostpower Parameters ResetserverSethostpower Runtime Errors Resetserver Errors Resetserver ParametersPresspwrbtn Presspwrbtn ParametersHoldpwrbtn Runtime Errors Presspwrbtn Runtime ErrorsHoldpwrbtn Holdpwrbtn ParametersColdbootserver Parameters ColdbootserverColdbootserver Runtime Errors Warmbootserver Parameters WarmbootserverWarmbootserver Runtime Errors GetuidstatusGetuidstatus Parameters UidcontrolGetuidstatus Response Insertvirtualmedia Uidcontrol ErrorsUidcontrol Parameters Insertvirtualmedia ParametersInsertvirtualfloppy Runtime Errors Ejectvirtualmedia Ejectvirtualmedia Runtime ErrorsEjectvirtualmedia Parameters Getvmstatus Getvmstatus Runtime ErrorsGetvmstatus Parameters Getvmstatus Return MessagesSetvmstatus Parameters SetvmstatusSetvmstatus Runtime Errors ILO Parameters Table ILO ParametersGlobal Settings ILO Parameters 333 SNMP/Insight Manager Settings ILO Parameters 335 ILO Status Server Name Server Status ParametersServer ID User Administration Parameters Administer User Accounts PasswordRemote Console Access Virtual Power and ResetEnable Lights-Out Functionality Idle Connection Timeout MinutesEnable iLO Rbsu Pass-Through ConfigurationRemote Console Port Configuration Require Login for iLO RbsuShow iLO During Post Remote Console Data EncryptionWeb Server Non-SSL Port Terminal Services PortWeb Server SSL Port Virtual Media PortSerial Command Line Interface Speed bits/second Serial Command Line Interface StatusMinimum Password Length Network Settings ParametersShared Network Port Enable NICTransceiver Speed Autoselect SpeedRegistering with DNS Server Registering with Wins ServerPing Gateway on Startup ILO IP AddressILO Subsystem Name ILO Gateway IP AddressDomain Name Dhcp ServerEnable iLO Snmp Alerts SNMP/Insight Manager Settings ParametersEnable Snmp Pass-Through Snmp Alert DestinationsInsight Manager Web Agent URL ILO Advanced License Activation SettingsLevel of Data Returned ILO Advanced Pack License KeyEnclosure Name Rack NameBay Name BayEnable Automatic Power On Power SourceEnable Rack Alert Logging IML Directory Settings ParametersEnable Local User Accounts Enable Directory AuthenticationLOM Object Password Directory Server AddressClick Test Settings Testing Directory SettingsClick Start Test HP Management Core Ldap OID Classes and Attributes Directory Services SchemaCore Classes Core AttributesHpqTarget Core Class DefinitionsHpqRole HpqPolicy Core Attribute DefinitionsHpqPolicyDN HpqRoleMembershipHpqTargetMembership HpqRoleIPRestrictionDefaultHpqRoleIPRestrictions Directory Services Schema 357 HpqRoleTimeRestrictionLights-Out Management Attributes Lights-Out Management ClassesLights-Out Management Attribute Definitions Lights-Out Management Class DefinitionsHpqLOMv100 HpqLOMRightRemoteConsole HpqLOMRightLoginHpqLOMRightVirtualMedia HpqLOMRightLocalUserAdmin HpqLOMRightServerResetHpqLOMRightConfigureSettings Page Minimum Requirements Troubleshooting iLOILO Post LED Indicators Troubleshooting iLO 365 FEH Code Consistency Check Explanation Event Log EntriesTroubleshooting iLO 367 User Guide Integrated Lights-Out Troubleshooting iLO 369 Hardware and Software Link-Related Issues MS-DOS Error CodesHardware Login IssuesSoftware ILO Management Port Not Accessible by Name Login Name and Password Not AcceptedDirectory User Premature Logout Inability to Access the Login ILO Rbsu Unavailable after iLO and Server ResetInability to Connect to iLO after Changing Network Settings Inability to Access iLO Using TelnetInability to Connect to the iLO Diagnostic Port Inability to Connect to the iLO Processor through the NIC Firewall Issues Proxy Server Issues Troubleshooting Alert and Trap ProblemsAuthentication Code Error Message ILO Security Override SwitchLocal USB Mouse and Linux Troubleshooting Mouse ProblemsRemote Console Mouse Control Issue Mouse Issue Using SuSE LinuxEmulating a PS/2 Keyboard in a Headless Server Environment Troubleshooting Remote Console ProblemsLinux Remote Console User Guide Integrated Lights-Out Remote Console Text Window not Updating Properly Remote Console Turns Grey or Black Troubleshooting SSH and Telnet ProblemsInitial PuTTY Input Slow PuTTY Client Unresponsive with Shared Network PortTerminal Services Button Is Not Working Troubleshooting Terminal Services ProblemsTerminal Services Proxy Stops Responding SSH Text Support from a Remote Conosle SessionGeneral Guidelines Troubleshooting Video and Monitor ProblemsTelnet Displays Incorrectly in DOS Video Applications not Displaying in the Remote ConsoleTroubleshooting Miscellaneous Problems Troubleshooting Virtual Media ProblemsVirtual Drive Listing Virtual Media Applet has a Red X and Will Not DisplayShared Instances Cookie Sharing Between Browser Instances and iLOCookie Order Behavior Troubleshooting iLO 389 Displaying the Current Session Cookie Preventing Cookie-Related User IssuesILO Network Flash Recovery Inability to Upgrade iLO FirmwareDiagnostic Steps Incorrect Time or Date of the Entries in the Event LogFlash Recovery Process ROMPaq ILO Does Not Respond to SSL Requests Testing SSLRequest New Certificate Resetting iLOServer Name Still Present after Erase Utility is Executed Troubleshooting a Remote HostHP Contact Information Technical SupportBefore You Contact HP User Guide Integrated Lights-Out Acronyms and Abbreviations DAV ILO JVM MTU RDP SSL Page Index LAN Index Uidcontrol