Manualshelf

White Papers

ManualsBrandsDell ManualsActive System ManagerDRAC4 Version 1.70
12345678910
PAGE 6 OF 17
Authentication and Authorization
Login Using Local Account
The DRAC 4 comes with a default local user account pre-configured with an administrator role.
The default user name for this account is “root” and the default password is “calvin”.
Note: Dell strongly recommends changing the default user name and password settings
during deployment of the DRAC 4.
DRAC 4 supports up to 16 local users. Each user can be enabled or disabled. You can secure
the DRAC 4 by disabling all local user accounts and using only Microsoft
®
Active Directory
®
users since MS Active Directory is considered to have stronger secure policy management.
Local users’ username and password can be changed. DRAC 4 local users’ account policy is
as following:
Anonymous user is NOT supported
NULL user name is NOT supported
NULL password is NOT supported
Maximum user name length is 16 characters
Maximum user password length is 20 characters
The DRAC 4 local user password is stored as an MD5 hashing value on its NVRAM.
DRAC 4 supports privileged-based access to a DRAC 4. Every DRAC 4 local user or MS
Active Directory user has a privilege associate with it. The privilege is per channel per user.
The privilege defines the kind of rights a user has on the DRAC 4.
The DRAC 4 offers nine privileges. Each user can have any combination of the nine privileges.
The nine privileges are as follows:
RAC Login User Privilege
This privilege allows a user to log in to the DRAC 4 card. An administrator can easily disable a
user from a DRAC 4 by removing this privilege. Removing the login privilege from a user is not
the same as deleting a user. The user will remain in the user database but will not be able to
log in and use this DRAC 4 card. An administrator can quickly re-enable the user by granting
the log in privilege without totally reconfiguring the user settings.
RAC Card Configuration Privilege
This privilege allows a user to change all DRAC 4 card configurations except for the user
configuration (for example, out-of-band NIC configuration, SNMP trap configuration, SSL
certificate configuration, and so on).
RAC User Configuration Privilege
This privilege allows a user to add or delete a user or change existing user privileges.