HP 1x1x16 Integration Notes - Page 4
Browse online or download pdf Integration Notes for Switch HP 1x1x16. HP 1x1x16 8 pages. Ldap directory services option for the hp ip console switch
The directory services option can be configured to operate in one of two basic modes:
• Authenticate Only
• Open LDAP
NOTE:
In a system using LDAP, if the directory service of the domain controller is
unavailable, the built-in, console switch administrator account still has access
to the switch and all connected servers. The user, however, will still have to
log into connected servers.
Authenticate Only mode
In Authenticate Only mode, the directory services of the domain controller validates switch users,
while the switch itself grants access to the requested server. User data exists in the both the switch and
in the directory of the domain controller. Figure 3 shows how a switch user's query is processed using
the Authenticate Only mode.
Figure 3. Query processing in Authenticate Only mode
1.
Request to view
server console
Switch User
6.
Switch response
NOTE:
In the Authenticate Only mode, the user account data in the switch must
match exactly the user account data in the directory.
2.
Switch
5.
If valid, switch grants
access to requested
server based on KVM
rights in switch.
If invalid, KVM
connection is denied.
User ID + password
forwarded by LDAP
Controller
4.
Directory
response
3.
Directory checks User
ID and password for
validity.
Domain
Server
4