HP iLO 4 Scripting and Command Line Guide

ManualsBrandsHP ManualsComputer AccessoriesHP Integrated Lights-Out 4 (iLO 4) Firmware for ProLiant Gen8 Servers

141

142

143

144

145

146

147

148

149

150

DIR_ENABLE_GRP_ACCT causes iLO to use schema-less directory integration. The possible values

are Yes and No.

When using schema-free directory integration, iLO supports variable privileges associated with

different directory groups. These groups are contained in the directory, and the corresponding

member iLO privileges are stored in iLO.

DIR_KERBEROS_ENABLED enables or disables Kerberos authentication. The possible values are

Yes and No.

DIR_KERBEROS_REALM specifies the Kerberos realm for which the domain controller is configured.

By convention, the Kerberos realm name for a given domain is the domain name converted to

uppercase.

DIR_KERBEROS_KDC_ADDRESS specifies the location of the domain controller. The domain

controller location is specified as an IP address or DNS name.

DIR_KERBEROS_KDC_PORT specifies the port number used to connect to the domain controller.

The Kerberos port number is 88, but the domain controller can be configured for a different port

number.

DIR_KERBEROS_KEYTAB specifies the contents of the keytab file which is a binary file containing

pairs of principals and encrypted passwords. In the Windows environment, the keytab file is

generated with a ktpass utility. After generating a binary keytab file using the appropriate utility,

use a Base64 encoder to convert the binary file to ASCII format.

Place the Base64 contents between:

-----BEGIN KEYTAB-----

and

-----END KEYTAB-----

• DIR_GRPACCT1_NAME identifies a group container in the directory, such as Administrators,

Users, or Power Users.

• DIR_GRPACCT1_PRIV numerically identifies iLO privileges for members of the group. You can

mix and match privileges by including more than one value. These privileges are expressed

as a comma separated list of numbers (1,2,3,4,5,6) which correlate to:

1—Administer Group Accounts

2—Remote Console Access

3—Virtual Power and Reset

4—Virtual Media

5—Configure iLO 4 Settings

6—Login Privilege

NOTE: Do not use the following tags when using directory integration with schema extension:

◦ DIR_ENABLE_GRP_ACCT

◦ DIR_GRPACCT1_NAME

◦ DIR_GRPACCT1_PRIV

Do not use the following tags when using schema-free directories

◦ DIR_OBJECT_DN

◦ DIR_OBJECT_PASSWORD

DIR_LOCAL_USER_ACCT enables or disables local user accounts. The possible values are Yes

and No.

144 RIBCL XML Scripting Language