CLI Guide
Option Description
• ldap — Tests LDAP conguration and operation (requires user
name and password).
-u <username> The user name specied in an appropriate format for the selected
authentication method. That is, Active Directory users are specied
as user_name@domain_name.
-p <password> The password for the indicated user account.
-d <bitmask> A bitmask (specied as a hexadecimal value) to select various
diagnostic messaging levels. This option is optional.
NOTE: -d option is not supported with the remote racadm
interface.
Table 136. testfeature -f ad
Description Tests Active Directory conguration using simple authentication
(user name and password). Use the optional -d switch to obtain
additional diagnostic information, as needed.
This subcommand when executed performs the following:
• Checks command syntax.
• Veries whether the required system resources are available.
• Validates Active Directory conguration.
• Veries the SSL certicate and if the certicate signing request
(key) exists.
• Acquires LDAP and Global Catalog Service records from DNS.
• Acquires user privileges from the Active Directory server.
• Checks the time to acquire user privileges with the allotted time
to login.
NOTE: In the event of an error, the command displays the
test that failed, all the tests performed earlier to the test
that failed, and all the error messages.
Synopsis
testfeature -f ad -u <username> -p <password>
[-d <diagnostic-message-level>]
Example
• testfeature –f ad –u user@domain –p secret
SUCCESSFUL: User permissions are xxxxxppp.
The last three digits are the user's permissions.
• testfeature –f adkrb –u
user_name@domain_name
SUCCESSFUL: User permissions are 80000fff.
• testfeature -f ldap -u harold -p barrel
SUCCESSFUL: User permissions are 0x00000fff.
Table 137. testfeature -f adkrb
Description Tests the Active Directory conguration using the Kerberos
authentication (single sign-on or Smart Card login). Use the optional
108 RACADM Subcommand Details