Manualshelf

Users Guide

ManualsBrandsDell ManualsConverged InfrastructureDSS 9600
161162163164165166167168169170
Enabling or disabling smart card login using iDRAC settings utility
To enable or disable the Smart Card logon feature:
1. In the iDRAC Settings utility, go to Smart Card.
The iDRAC Settings Smart Card page is displayed.
2. Select Enabled to enable smart card logon. Else, select Disabled. For more information about the options, see iDRAC
Settings Utility Online Help.
3. Click Back, click Finish, and then click Yes.
The smart card logon feature is enabled or disabled based on the selection.
Configuring Smart Card Login
NOTE: For Active Directory Smart Card Configuration, iDRAC must be configured either with Standard or Extended
Schema SSO Login.
Configuring iDRAC smart card login for Active Directory users
Before configuring iDRAC Smart Card login for Active Directory users, make sure that you have completed the required
prerequisites.
To configure iDRAC for smart card login:
1. In iDRAC Web interface, while configuring Active Directory to set up an user account based on standard schema or extended
schema, on the Active Directory Configuration and Management Step 1 of 4 page:
Enable certificate validation.
Upload a trusted CA-signed certificate.
Upload the keytab file.
2. Enable smart card login. For information about the options, see the iDRAC Online Help.
Configuring iDRAC smart card login for local users
To configure iDRAC local user for smart card login:
1. Upload the smart card user certificate and trusted CA certificate to iDRAC.
2. Enable smart card login.
Uploading smart card user certificate
Before you upload the user certificate, make sure that the user certificate from the smart card vendor is exported in Base64
format. SHA-2 certificates are also supported.
Uploading smart card user certificate using web interface
To upload smart card user certificate:
1. In iDRAC web interface, go to iDRAC Settings > Users > Smart Card.
NOTE: The Smart Card login feature requires the configuration of the local and/or Active Directory user certificate.
2. Under Configure Smart Card Logon, select Enabled With Remote RACADM to enable the configuration..
3. Set the option to Enable CRL Check for Smart Card Logon.
4. Click Apply.
170
Configuring iDRAC for Single Sign-On or smart card login