Users Guide

ManualsBrandsDell ManualsActive System ManageriDRAC9 - 3.3x Series

141

142

143

144

145

146

147

148

149

150

Management Station Settings

Perform the following steps after configuring SSO login for Active Directory users:

1. Set the DNS Server IP in Network properties and mention the preferred DNS Server IP.

2. Go to My Computer and add the tiger.com domain.

3. Add the Active Directory User to Administrator by navigating to: My Computer > Manage > Local User and Groups > Groups >

Administrator and add the Active Directory User.

4. Logoff the system and login using the Active Directory User credential.

5. In Internet Explorer Setting, add *.tiger.com domain as below:

a. Go to Tools > Internet Options > Security > Local Internet > Sites and clear the Automatically detect intranet network

setting selection. Select the remaining three options and click Advanced to add *.tiger.com

b. Open a new window in IE and use the iDRAC hostname to launch the iDRAC GUI.

6. In Mozilla Firefox Setting, add *.tiger.com domain:

• Launch Firefox browser and type about:config in the URL.

• Use negotiate in the filter textbox. Double click the result consisting of auth.trusted.uris. Type the tiger.com domain, save the

settings and close the browser.

• Open a new window in Firefox and use the iDRAC hostname to launch the iDRAC GUI.

NOTE: On the management stations running Windows 7, Windows Vista, or Windows 2000 operating system, ensure

that you make the following modifications in the registry:

• For Standard schema, allow encryption types for Kerberos and outgoing NTLM traffic from Local Group Policy

editor, then perform a Group Policy update.

• For Extended schema, create a DWORD key in Registry Editor.

Enabling or disabling smart card login

Before enabling or disabling smart card login for iDRAC, make sure that:

• You have configure iDRAC permissions.

• iDRAC local user configuration or Active Directory user configuration with the appropriate certificates is complete.

NOTE:

If smart card login is enabled, then SSH, Telnet, IPMI Over LAN, Serial Over LAN, and remote RACADM are

disabled. Again, if you disable smart card login, the interfaces are not enabled automatically.

Enabling or disabling smart card login using web interface

To enable or disable the Smart Card logon feature:

1. In the iDRAC web interface, go to iDRAC Settings > Users > Smart Card.

The Smart Card page is displayed.

2. From the Configure Smart Card Logon drop-down menu, select Enabled to enable smart card logon or select Enabled With

Remote RACADM. Else, select Disabled.

For more information about the options, see the iDRAC Online Help.

3. Click Apply to apply the settings.

You are prompted for a Smart Card login during any subsequent logon attempts using the iDRAC web interface.

Enabling or disabling smart card login using RACADM

To enable smart card login, use the set command with objects in the iDRAC.SmartCard group.

For more information, see the iDRAC RACADM CLI Guide available at www.dell.com/idracmanuals.

150

Configuring iDRAC for Single Sign-On or smart card login