Manualshelf

Installation Manual

ManualsBrandsHP ManualsComputers & AccessoriesHigh-End HP ProLiant DL360P G8 Server 2 x 2.90Ghz E5-2690 8C 192GB 8x Caddies (Certified Refurbished)
81828384858687888990
HPE SSO
HPE SSO enables you to browse directly from an HPE SSO-compliant application (such as HPE
SIM and HPE OneView) to iLO, bypassing an intermediate login step.
To use this feature:
You must have a supported version of an HPE SSO-compliant application.
You might need iLO 4 1.20 or later.
Configure iLO to trust the SSO-compliant application.
iLO contains support for HPE SSO applications to determine the minimum HPE SSO certificate
requirements. Some HPE SSO-compliant applications automatically import trust certificates when
they connect to iLO. For applications that do not perform this function automatically, use the HPE
SSO page to configure the SSO settings through the iLO web interface. You must have the
Configure iLO Settings privilege to change these settings.
This feature and many others are part of a licensing package. For more information, see the
following website: http://www.hpe.com/info/ilo/licensing.
Configuring iLO for HPE SSO
Prerequisites
Configure iLO Settings privilege
An iLO license that supports this feature is installed. For more information, see the following
website: http://www.hpe.com/info/ilo/licensing.
Configuring HPE SSO
1. Navigate to the AdministrationSecurityHPE SSO page.
2. Configure the Single Sign-On Trust Mode setting.
If you enable support for HPE SSO, Hewlett Packard Enterprise recommends using the
Trust by Certificate mode.
3. Configure iLO privileges for each role in the Single Sign-On Settings section.
4. To save the SSO settings, click Apply.
5. If you selected Trust by Certificate or Trust by Name, add the trusted certificate or DNS
name to iLO.
6. After you configure SSO in iLO, log in to an HPE SSO-compliant application and browse to
iLO. For example, log in to HPE SIM, navigate to the System page for the iLO processor,
and then click the iLO link in the More Information section.
Although a system might be registered as a trusted server, SSO might be refused because
of the current trust mode or certificate status. For example, if an HPE SIM server name is
registered, and the trust mode is Trust by Certificate, but the certificate is not imported,
SSO is not allowed from that server. Likewise, if an HPE SIM server certificate is imported,
but the certificate has expired, SSO is not allowed from that server. The list of trusted servers
is not used when SSO is disabled. iLO does not enforce SSO server certificate revocation.
More information
Single Sign-On Trust Mode options
SSO user privileges
Adding trusted certificates
Importing a direct DNS name
HPE SSO 89