HP (Hewlett-Packard) 232664-006 Network Card User Manual


  Open as PDF
of 205
 
Scripting, command line, and utility options 171
If telnet, SSH or Serial CLI access is required, re-enable these settings after Two-Factor Authentication is
enabled. However, because these access methods do not provide a means of Two-Factor Authentication,
only a single factor is required to access the RILOE II with telnet, SSH or serial CLI.
When Two-Factor Authentication is enabled, access with the CPQLOCFG utility is disabled, because
CPQLOCFG does not supply all authentication requirements. However, the HPONCFG utility is functional,
since administrator privileges on the host system are required to execute this utility.
Example of enabling Two-Factor Authentication:
<RIBCL VERSION="2.0">
<LOGIN USER_LOGIN="adminname" PASSWORD="password">
<RIB_INFO MODE="write">
<MOD_TWOFACTOR_SETTINGS>
<AUTH_TWOFACTOR_ENABLE value="Yes"/>
<CERT_REVOCATION_CHECK value="No"/>
<CERT_OWNER_SAN/>
</MOD_TWOFACTOR_SETTINGS>
</RIB_INFO>
</LOGIN>
</RIBCL>
Importing a CA and a user certificate example:
<RIBCL VERSION="2.0">
<LOGIN USER_LOGIN="test" PASSWORD="password">
<RIB_INFO MODE="write">
<MOD_TWOFACTOR_SETTINGS>
<CERT_OWNER_SAN/>
<IMPORT_CA_CERTIFICATE>
-----BEGIN CERTIFICATE-----
MIIEtzCCA5+gAwIBAgIQBGg9C0d7B5pF/l4bVA44hjANBgkqhkiG9w0BAQUFADBM
MRMwEQYKCZImiZPyLGQBGRYDTEFCMRUwEwYKCZImiZPyLGQBGRYFSkpSSUIxHjAc
...
9gVCPSOQUGMMZUeNYOBkTE0e+MrPGL+TqQEyIakF3rjA2PbL1uSY6d4dlCx7izkO
buEpHTPDqs9gZ3U5ht9bjES93UHnDENLopkZ2JgGwH8Y50eBnjq4xml9psbYZn5Y
yWpONE/IjIjJyww=
-----END CERTIFICATE-----
</IMPORT_CA_CERTIFICATE>
<IMPORT_USER_CERTIFICATE USER_LOGIN="apollo">
-----BEGIN CERTIFICATE-----
CZImiZPyLGQBGRYDTEFCMRUwEwYKCZImiZPyLGQBGRYFSkpSSUIxHjAcBgNVBAMT
ODU5NDRaMFYxEzARBgoJkiaJk
...
sjbbpNGpxGsK9GZi5j6UeOYklePyau0TJ3KIm2RPlR2C6XAGz2PTWgsxGlUP9lNH
bfz0+TD0JsschjqK23/vr2GxQ9C/835zRxdu5Dn8JGm3/dFHR2VxgCetIxyR9TQC
ZKTfvIa8N9KvMLZdclSj94jUyMZjYYmCWULW8WySMV70nclvrsI2hi3nwMtt2Zvj
WnbeZujBX9LGz3HdmghgUw4GTwYl3ZG88snuTyXliLPFXVYXvNAhGeWqXtrh7A90
3NprjG7DM1uw
-----END CERTIFICATE-----
</IMPORT_USER_CERTIFICATE>
</MOD_TWOFACTOR_SETTINGS>
</RIB_INFO>
 previous next