Installation Manual

ManualsBrandsHP ManualsComputers & AccessoriesHigh-End HP ProLiant DL360P G8 Server 2 x 2.90Ghz E5-2690 8C 192GB 8x Caddies (Certified Refurbished)

281

282

283

284

285

286

287

288

289

290

2. Install

a. Install an iLO Advanced license to enable directory service authentication.

b. Download the Directories Support for ProLiant Management Processors package and

install the utilities required by your environment.

You can install the Schema extender, snap-ins, and the Directories Support for ProLiant

Management Processors utility.

c. Run the Schema Extender to extend the schema.

d. Install the appropriate snap-ins for your directory service on one or more management

workstations.

3. Update

Set directory server settings and the DN of the management processor objects on the

Directory Settings page in the iLO web interface.

You can also complete this step by using the Directories Support for ProLiant Management

Processors software.

4. Manage roles and objects

a. Use the snap-ins to create a management device object and a role object.

b. Assign rights to the role object, as necessary, and associate the role with the

management device object.

c. Add users to the role object.

5. Handle exceptions

The iLO utilities are easier to use with a single role. If you plan to create multiple roles in the

directory, you might need to use directory scripting utilities, like LDIFDE or VBScript utilities.

These utilities create complex role associations. For more information, see “Tools for

configuring multiple iLO systems at a time” (page 302).

Prerequisites for configuring Active Directory with the HPE Extended Schema

configuration

1. Install Active Directory and DNS.

2. Install the root CA to enable SSL. iLO communicates with the directory only over a secure

SSL connection.

For information about using Certificate Services with Active Directory, see the Microsoft

documentation.

iLO requires a secure connection to communicate with the directory service. This connection

requires the installation of the Microsoft CA. For more information, see the Microsoft

Knowledge Base Article 321051: How to Enable LDAP over SSL with a Third-Party

Certification Authority.

3. Before you install snap-ins and schema for Active Directory, read the following Microsoft

Knowledge Base article: 299687 MS01-036: Function Exposed By Using LDAP over SSL

Could Enable Passwords to Be Changed.

Directory services support

iLO software is designed to run with the Microsoft Active Directory Users and Computers snap-in,

enabling you to manage user accounts through the directory.

iLO supports Microsoft Active Directory with the HPE Extended Schema configuration.

Installing the iLO directory support software

1. Download the Directories Support for ProLiant Management Processors package from the

following website: http://www.hpe.com/support/ilo4.

288 Kerberos authentication and Directory services