Users Guide
172 Enabling Kerberos Authentication
CAUTION: To log into iDRAC6, ensure that you have the latest runtime
components of Microsoft Visual C++ 2005 libraries installed (32-bit C++ library).
Else, the Smart Card plug–in will not load and you will not be able to login to
iDRAC6. For more information, see the Microsoft website at www.microsoft.com.
You are logged into iDRAC6 with appropriate Microsoft Active Directory
privileges if:
• You are a Microsoft Active Directory user
• You are configured in iDRAC6 for Active Directory login
• iDRAC6 is enabled for Kerberos Active Directory authentication
• You have entered the correct PIN for the Smart Card associated with the
Active Directory user attempting to log in
iDRAC6 Login Scenarios with TFA and SSO
When you login to iDRAC6 from the CMC Web GUI, iDRAC6 displays the
following login screens options for various TFA and SSO enablement
combinations, with different versions of iDRAC/iDRAC6 and CMC:
•
CMC v2.1 with TFA enabled and iDRAC6 v2.1 with TFA enabled:
iDRAC6 Login prompt with PIN entry.
•
CMC v2.1 with TFA enabled, and iDRAC6 v2.1 with TFA disabled and
SSO disabled:
iDRAC6 Login prompt with user name, domain, and
password.
•
CMC v2.1 with TFA enabled, and iDRAC6 v2.1 with TFA disabled and
with SSO enabled:
iDRAC6 logins automatically with SSO.
•
CMC v2.1 with TFA enabled and with iDRAC6 v2.0:
iDRAC6 Login
prompt with user name, domain, and password.
•
CMC v2.1 with TFA enabled and iDRAC 1.
x:
iDRAC6 Login prompt
with user name, domain, and password.
•
CMC v2.0 or earlier and iDRAC6 v2.1 with TFA enabled:
iDRAC6 Login
prompt with PIN entry.
•
CMC v2.1 with TFA disabled, and iDRAC6 v2.1 with TFA enabled and
SSO disabled:
iDRAC6 prompts for PIN entry.
•
CMC v2.1 with TFA disabled, and iDRAC6 v2.1 with TFA disabled and
SSO enabled:
iDRAC6 logins with SSO.