Users Guide
184 Using the iDRAC6 Directory Service
racadm config -g cfgldap -o
cfgLdapCertValidationenable 0
racadm config -g cfgldaprolegroup -i 1 -o
cfgLdapRoleGroupDN 'cn=everyone,ou=groups,dc=
common,dc=com'
racadm config -g cfgldaprolegroup -i 1 -o
cfgLdapRoleGroupPrivilege 0x0001
View the settings using the below commands
racadm getconfig -g cfgldap
racadm getconfig -g cfgldaprolegroup -i 1
Use RACADM to confirm whether login is possible
racadm -r <iDRAC6–IP> -u user.1 -p password getractime
Additional settings to test BindDN option
racadm config -g cfgldap -o cfgLdapBindDN "cn=
idrac_admin,ou=iDRAC_admins,ou=People,dc=common,dc=
com"
racadm config -g cfgldap -o cfgLdapBindPassword
password
NOTE: Configure iDRAC6 to use a Domain Name Server, which resolves the LDAP
server hostname that iDRAC6 is configured to use in the LDAP server address. The
hostname must match the "CN" or "Subject" in the LDAP server's certificate.
Frequently Asked Questions about Active
Directory
SSO login fails on Windows Server 2008 R2 x64. What should I do for SSO
to work with Windows Server 2008 R2 x64?
1
Execute
http://technet.microsoft.com/en
-
us/library/dd560670(WS.10).aspx
for the
domain controller and domain policy. Configure your computers to use the
DES-CBC-MD5 cipher suite. These settings might affect compatibility
with client computers or services and applications in your environment.