Manualshelf

HP Integrity and HP 9000 iLO MP Operations Guide, Fifth Edition

ManualsBrandsHP ManualsServerHP 9000 rp3440-4 Server
11121314151617181920
Remote Power Control
The iLO MP enables remote power cycle; power on and power off; and TOC. It also provides
you with options to reset the system, the BMC, or iLO MP.
Event Logging
The iLO MP provides event logging, display, and keyword search of console history and system
events.
Advanced Features
The advanced features require the iLO MP Advanced Pack license. See “iLO MP Advanced Pack
License” (page 21).
iLO MP advanced features include the iLO MP standard features as well as the following features:
SSH
Secure Shell (SSH) is an industry-standard client-server connectivity protocol that provides a
secure remote connection. the iLO MP supports:
SSH2 implementation.
Authentication algorithms RSA and DSA.
Encryption algorithms 3DES-CBC and AES128-CBC.
Integrity algorithms HMAC-SHA1 and MD5.
HPSIM Group Actions
HP Systems Insight Manager (HPSIM) is a system- level management tool that supports executing
iLO MP commands using the SSH interface. HPSIM enables you to perform similar management
activities across multiple iLO MPs (group actions) without requiring you to access each iLO MP
individually. Group actions can be taken regardless of the server power state. For more
information about HPSIM, see: http://www.docs.hp.com/go/hpsim.
Directory-Based Secure Authorization Using LDAP
The directory-based authentication and authorization option enables iLO MP user accounts to
be defined in a centralized database on an LDAP server. iLO MP users are authenticated when
logging in to the iLO MP and authorization is given each time an iLO MP command runs. This
provides a centralized database (LDAP server) of all user accounts and avoids the overhead of
creating users in each iLO MP. Directory authentication occurs by enabling Extended Schema
or Default Schema. When Extended Schema is used, the schema in the directory server must be
extended. When Default Schema is selected, schema extension is not needed.
LDAP Lite
In Lightweight Directory Access Protocol Light (LDAP Lite) you can use directory authentication
for logging into the iLO MP without having to do any schema extension on the directory server
or snap-in installation on the client. In addition to general directory integration benefits, iLO MP
schema-free integration provides the following:
Minimal maintenance and administration
Reliable security
Complements two-factor authentication
Not extending the schema on the directory server means the directory server does not know
anything about the iLO MP object or privileges, and the only thing the iLO MP queries from the
directory server is to authenticate the user name and password.
20 Introduction to iLO MP