Yes, the current release of OMEnterprise supports integration of AD and LDAP to the appliance and the same credentials can be used to perform all the other operations on iDRAC considering iDRAC is already configured for AD/LDAP.
The newer version will have some issues fixed which is always the case with a newer version of any product. Please do let us know if you are looking for anything specific as well.
I have 1000+ servers. I do not want to configure the iDRAC individually for AD/LDAP, this should happen when I manage them with OpenManage Enterprise. Please consider this a feature request.
Lenovo xClarity does this. The minute you manage a node with xClarity, it configures the IMM for AD/LDAP access so you don't have to do anything but login.
Thanks for your response. I will pass this on to the right people to consider this as a feature request. For now, i believe there should be scripts to configure AD/LDAP on multiple iDRACs, i'll try to find it out and update the post.
The easiest way to do this at scale is to configure one to use LDAP / AD and then use
racadm -r ip -u root -p calvin config get -f
To generate a template that you can push to the rest. If you need SSL to your AD/LDAP you’ll have to push that out via a racadm script anyway (check my other posts)
Alternatively you can use OME to grab a template from the configured device and push that to the rest via a configuration template. You still can’t do the SSL CA, but it’ll do what you want.
be careful because the templates are different between idrac6,7,9 (8 is the same as 7) also there’s extra options in the FX2 platform that are in the Rxx0 series hardware.
DELL-Pupul M
2 Intern
•
1K Posts
0
August 19th, 2018 23:00
Hi and thanks for the post,
Yes, the current release of OMEnterprise supports integration of AD and LDAP to the appliance and the same credentials can be used to perform all the other operations on iDRAC considering iDRAC is already configured for AD/LDAP.
The newer version will have some issues fixed which is always the case with a newer version of any product. Please do let us know if you are looking for anything specific as well.
wreedvsan
1 Rookie
•
26 Posts
0
August 20th, 2018 07:00
I have 1000+ servers. I do not want to configure the iDRAC individually for AD/LDAP, this should happen when I manage them with OpenManage Enterprise. Please consider this a feature request.
Lenovo xClarity does this. The minute you manage a node with xClarity, it configures the IMM for AD/LDAP access so you don't have to do anything but login.
DELL-Pupul M
2 Intern
•
1K Posts
0
August 21st, 2018 05:00
Thanks for your response. I will pass this on to the right people to consider this as a feature request. For now, i believe there should be scripts to configure AD/LDAP on multiple iDRACs, i'll try to find it out and update the post.
silverbacks
1 Message
0
August 30th, 2018 21:00
Any updates on this?
dwatadventsol
1 Rookie
•
37 Posts
0
September 20th, 2018 12:00
The easiest way to do this at scale is to configure one to use LDAP / AD and then use
racadm -r ip -u root -p calvin config get -f
To generate a template that you can push to the rest. If you need SSL to your AD/LDAP you’ll have to push that out via a racadm script anyway (check my other posts)
Alternatively you can use OME to grab a template from the configured device and push that to the rest via a configuration template. You still can’t do the SSL CA, but it’ll do what you want.
be careful because the templates are different between idrac6,7,9 (8 is the same as 7) also there’s extra options in the FX2 platform that are in the Rxx0 series hardware.
DanerRacing
5 Posts
0
September 27th, 2018 17:00
Having an issue getting AD login to work.
I created to AD groups called DellOME_Viewer and DellOME_Admin and was able to searching AD through the Dell OME webpage.
When I try to login with my AD account which is part of DellOME_Admin group, I receive the following:
"Unable to perform the operation because the provided credentials are invalid."
How do I enter the username to login as with my AD account?
DOMAIN\username
username@domain.com
Any assistance would great.
wreedvsan
1 Rookie
•
26 Posts
0
September 27th, 2018 17:00
@Domain.com is how we login
DanerRacing
5 Posts
0
September 27th, 2018 17:00
Thanks for the quick reply.
Was the AD account you login with imported itself, or is it part of a AD Group you imported?
wreedvsan
1 Rookie
•
26 Posts
0
September 27th, 2018 19:00
We imported the AD groups. They work.
I also can login as admin locally.
DanerRacing
5 Posts
0
September 28th, 2018 05:00
Might you be able to share the steps/instructions you followed to get it to work?
It seems fairly easy, yet apparently I'm challenged :)
Thanks.
DanerRacing
5 Posts
0
September 29th, 2018 08:00
After Upgrade the Lexington Console from 1.0.0 to 3.0.0 the AD portion is now working.
Thanks.