Is $SUBJECT even possible?
I've successfully set up LDAP authentication on the iDRACs in my lab, but I've just discovered that none of the users defined in the directory can use IPMI. Local users can use IPMI (via lanplus) just fine.
Is there a way to enable this basic (IMO) functionality?
IPMI over LAN is disabled by default on all of our iDRACs, as far as I can remember. Is it not working for everyone or just users authenticating by a specific method? Make sure it is enabled and make sure the method has permissions to use it. The iDRAC manuals may be located on the system support page. If not, you can find them on the iDRAC support page.
Dell EMC, Enterprise Engineer
As I said in the original post:
Local users can use IPMI (via lanplus) just fine.
It's only LDAP-authenticated users that can't use IPMI. (They can log in to the iDRAC web UI.) I have verified with tcpdump that the iDRAC doesn't query the LDAP server at all when an (lanplus) IPMI connection is made.