Users Guide
Using the DRAC 5 With Microsoft Active Directory 145
e
Ensure that your
DRAC Name
,
Root Domain Name
, and
DRAC
Domain Name
match your Active Directory environment
configuration.
f
Ensure that the DRAC 5 password has a maximum of 127 characters.
While the DRAC 5 can support passwords of up to 256 characters,
Active Directory only supports passwords that have a maximum
length of 127 characters.
SSO login fails with Active Directory users on Windows 7 operating systems.
What should I do to resolve this?
You must enable the encryption types for Windows 7. To enable the
encryption types (for standard and extended schema):
1
Log in as administrator or as a user with adminstrative privilege.
2
Go to
Start
and run
gpedit.msc
.
The
Local Group Policy Editor
window is displayed.
3
Navigate to
Local Computer Settings
Windows Settings
Security
Settings
Local Policies
Security Options
.
4
Right-click
Network Security: Configure encryption types allowed for
kerberos
and select
Properties
.
5
Enable all the options and click
OK
.
You can now log in to iDRAC using SSO.
6
In the
Local Group Policy Editor
window, navigate to
Local Computer
Settings
Windows Settings
Security Settings
Local Policies
Security Options
.
7
Right-click
Network Security: Restrict NTLM: Outgoing NTLM traffic
to remote server
and select
Properties
.
8
Select
Allow all
, click
OK
, and then close the
Local Group Policy Editor
window.
9
Go to
Start
and run
cmd
.
The
command prompt
window is displayed.
10
Run the command
gpupdate /force
.
The group policies are updated.
11
Close the
command prompt
window.