Users Guide

ManualsBrandsDell ManualsActive System ManageriDRAC9 - 3.0x Series

141

142

143

144

145

146

147

148

149

150

Configuring iDRAC SSO login for Active Directory users

using web interface

To configure iDRAC for Active Directory SSO login:

NOTE: For information about the options, see the

iDRAC Online Help

1. Verify whether the iDRAC DNS name matches the iDRAC Fully Qualified Domain Name. To do this, in iDRAC Web interface, go to

iDRAC Settings > Network > Common Settings and see the DNS iDRAC Name property.

2. While configuring Active Directory to setup a user account based on standard schema or extended schema, perform the following two

additional steps to configure SSO:

• Upload the keytab file on the Active Directory Configuration and Management Step 1 of 4 page.

• Select Enable Single Sign-On option on the Active Directory Configuration and Management Step 2 of 4 page.

Configuring iDRAC SSO login for Active Directory users

using RACADM

To enable SSO, complete the steps to configure Active Directory, and run the following command:

racadm set iDRAC.ActiveDirectory.SSOEnable 1

Configuring iDRAC smart card login for local users

To configure iDRAC local user for smart card login:

1. Upload the smart card user certificate and trusted CA certificate to iDRAC.

2. Enable smart card login.

Uploading smart card user certificate

Before you upload the user certificate, make sure that the user certificate from the smart card vendor is exported in Base64 format.

SHA-2 certificates are also supported.

Uploading smart card user certificate using web interface

To upload smart card user certificate:

1. In iDRAC Web interface, go to iDRAC Settings > Users > Smart Card.

NOTE:

The Smart Card log-On feature requires the configuration of the local and/or Active Directory user

certificate.

2. Under Configure Smart Card Logon, select Enabled With Remote RACADM to enable the configuration..

3. Enable Enable CRL Check for Smart Card Logon.

4. Click Apply.

Uploading smart card user certificate using RACADM

To upload smart card user certificate, use the usercertupload object. For more information, see the iDRAC RACADM CLI Guide available

at www.dell.com/idracmanuals.

Uploading trusted CA certificate for smart card

Before you upload the CA certificate, make sure that you have a CA-signed certificate.

Configuring iDRAC for Single Sign-On or smart card login

143