Users Guide

ManualsBrandsDell ManualsActive System ManageriDRAC9 - 3.0x Series

141

142

143

144

145

146

147

148

149

150

Uploading trusted CA certificate for smart card using web interface

To upload trusted CA certificate for smart card login:

1. In iDRAC Web interface, go to iDRAC Settings > Network > User Authentication > Local Users.

The Users page is displayed.

2. In the User ID column, click a user ID number.

The Users Main Menu page is displayed.

3. Under Smart Card Configurations, select Upload Trusted CA Certificate and click Next.

The Trusted CA Certificate Upload page is displayed.

4. Browse and select the trusted CA certificate, and click Apply.

Uploading trusted CA certificate for smart card using RACADM

To upload trusted CA certificate for smart card login, use the usercertupload object. For more information, see the iDRAC RACADM CLI

Guide available at www.dell.com/idracmanuals.

Configuring iDRAC smart card login for Active

Directory users

Before configuring iDRAC Smart Card login for Active Directory users, make sure that you have completed the required prerequisites.

To configure iDRAC for smart card login:

1. In iDRAC Web interface, while configuring Active Directory to set up an user account based on standard schema or extended schema,

on the Active Directory Configuration and Management Step 1 of 4 page:

• Enable certificate validation.

• Upload a trusted CA-signed certificate.

• Upload the keytab file.

2. Enable smart card login. For information about the options, see the iDRAC Online Help.

Enabling or disabling smart card login

Before enabling or disabling smart card login for iDRAC, make sure that:

• You have configure iDRAC permissions.

• iDRAC local user configuration or Active Directory user configuration with the appropriate certificates is complete.

NOTE:

If smart card login is enabled, then SSH, Telnet, IPMI Over LAN, Serial Over LAN, and remote RACADM are

disabled. Again, if you disable smart card login, the interfaces are not enabled automatically.

Enabling or disabling smart card login using web interface

To enable or disable the Smart Card logon feature:

1. In the iDRAC web interface, go to iDRAC Settings > Users > Smart Card.

The Smart Card page is displayed.

2. From the Configure Smart Card Logon drop-down menu, select Enabled to enable smart card logon or select Enabled With

Remote RACADM. Else, select Disabled.

For more information about the options, see the iDRAC Online Help.

3. Click Apply to apply the settings.

You are prompted for a Smart Card login during any subsequent logon attempts using the iDRAC web interface.

Enabling or disabling smart card login using RACADM

To enable smart card login, use the set command with objects in the iDRAC.SmartCard group.

For more information, see the iDRAC RACADM CLI Guide available at www.dell.com/idracmanuals.

144

Configuring iDRAC for Single Sign-On or smart card login