I’ve recently been working with Cisco UCS — and more specifically the UCS Powertool (the powershell management component). Initially, my scripts were using a local account in UCSM for authentication. However, after changing the “Default Authentication Realm” from Local to LDAP (see screenshot below), I could no longer authenticate using a local account in my script
Using an account from the configured default realm worked — which makes plenty of sense as this is the provider UCS uses for authentication by default. However, I wanted to be able to specify the authentication realm in my scripts and override the default if necessary.
I had an idea on how to attempt this configuration while looking at the remotely authenticated user section. You’ll notice in the screenshot below that I have a remotely connected LDAP user with a prefix of ucs-ldap22\ (its at the bottom of the image).
Yes, that’s right. UCS hyphen NameOfAuthenticationDomain backslash UserName. I created an authentication domain named local, which maps to the local authentication provider, and then attempted to Connect-UCS specifying the username in the format ucs-local\myUserID — SUCCESS! Just thought I’d share this information in case anyone else has a similar need.