Manualshelf

HP Integrity iLO 3 Operations Guide

ManualsBrandsHP ManualsServerHP Integrity BL890c i2 Server Blade
61626364656667686970
SA: Set access
Command access level: MP configuration access
The SA command configures the access mode for the LAN and the Command mode. You can set
iLO 3 to enable web or SSH access. SSH and web SSL is enabled by default.
If LAN users are connected when a disable from this command runs, they are disconnected. Any
future incoming connection request to the corresponding port is rejected. A message appears prior
to being rejected.
NOTE: Currently, when an access method is first set to disabled, the message is sent. However,
after an iLO reboot, the port is not opened.
Command line usage and scripting:
SA [ -telnet <e|d> ] [ -web <e|d> ] [ -ssh <e|d> ]
[ -nc ]
SA -?
See also: DI, LC
SO: Security option help
Command access level: MP configuration access
The SO command enables you to modify the security options of iLO 3.
For user configuration, see the UC command. For SSH enable/disable, see the SA command.
The security options menu is as follows:
O – Security Options
Login timeouts
Allowed password faults
SSL certificate generation
Generate SSH key pairs
Exit security override mode
L – SSL Certificate This option is an SSL certificate that is a self generated certificate
and is also generated automatically the first time the iLO 3 is
booted or if the NVRAM in which it is stored gets corrupted. You
might want to regenerate this certificate with your own parameters
or regenerate it when it is close to expiring. The initial certificate
has a 10-year expiration date from the build date of the MP binary
image. A regenerated certificate is only valid for 2 years from the
system date. The SSL certificate is used to connect the web GUI
to the iLO.
H – SSH Pairs This option would only be used if the SSH keys need to be
changed by choice or the keys which are stored in NVRAM get
corrupted. The first time the iLO 3 is booted, these keys are
generated automatically. These key pairs are used for SSH
connections to the iLO.
The following are SO command parameters:
Login timeout: 0 to 5 minutes. This is the maximum time allowed to enter login name and
password after the connection is established. The connection is interrupted when the timeout
value is reached. The local console restarts the login; for all other terminal types, the connection
is closed. A timeout value of 0 means there is no timeout set for the login.
The login timeout and the timeout value is effective on all ports including the local port.
However, the local port cannot be disconnected like other ports on login timeout. For example,
if a local port user sits at the hpilo-> Login: prompt, no action occurs even when a timeout
Text user interface 63