Directory groups – HP Integrity Superdome 2 Server User Manual

A failed test reports that the authenticated user does not have any authorization on Onboard
Administrator because the user does not belong to any of the configured directory groups.

Test Log

This is a running log of the details associated with the tests that have run and the results of the tests.

Directory Test Controls

The user name and password are sent to the LDAP server for authentication before the User
Authentication and User Authorization tests are performed.

Directory Groups

Description

Item

Used to select Directory Group for editing or deleting

Check box

1 to 255 characters and contains the same characters as search contexts. The group name is
used to determine LDAP users group membership. The group name must match one of the following
properties of a directory group:

Group Name

•

Name

•

Distinguished name

•

Common name

•

Display name

•

SAM account name

Administrator

Privilege Level

•

Only the Administrator, with Onboard Administrator Bays permission, can set the user privilege
level.

•

Can perform all actions on the enclosure when Onboard Administrator Bays permission is
selected. All Device Bays and All Interconnect Bays are automatically selected when Onboard
Administrator Bays is selected, and all the checkboxes are grayed out.

•

Without Onboard Administrator Bays permission, cannot see fans and power supplies.

•

Without Onboard Administrator Bays permission, can see only devices and interconnects to
which permissions have been given.

Operator

Privilege Level

•

Can perform all actions on the enclosure except for the functions under Users/Authentication
when Onboard Administrator Bays, All Device Bays, and All Interconnect Bays permissions
are selected.

•

Without Onboard Administrator Bays permission, cannot see fans and power supplies.

•

Without Onboard Administrator Bays permission, can see only devices and interconnects to
which permissions have been given.

User (read-only)

Privilege Level

•

Can view all information the Administrator and Operator can change except the
Users/Authentication information.

•

Can launch web interfaces to other devices.

•

Cannot change any configuration settings.

•

Without Onboard Administrator Bays permission, can manage only devices and interconnects
to which permissions have been given.

•

Without Onboard Administrator Bays permission, cannot see fans and power supplies.

0 to 58 characters, containing alphanumeric characters, the dash (-), the underscore (_), and the
space. The description of the LDAP group, a more readable version of the group name, or other
useful information.

Description

Managing users

149