Quick Reference Guide
Description Tests the Active Directory configuration using Kerberos
authentication (single sign-on or Smart Card login). Use
the optional -d switch to obtain additional diagnostic
information, as needed. This subcommand when executed
performs the following:
• Checks command syntax.
• Verifies if the required system resources are
available.
• Validates Active Directory configuration.
• Verifies if the SSL certificate and certificate
signing request (key) exists.
• Acquires LDAP and Global Catalog Service
records from DNS.
• Verifies if the CMC can acquire CMC, LDAP and
Global Catalog servers FQDN through reverse IP
lookups.
• Verifies that the CMC principal name matches the
principal name in the uploaded Keytab file.
• Verifies that the CMC acquires a Kerberos TGT.
• Acquires user privileges from the Active Directory
server.
• Checks the time to acquire user privileges with
the allotted time to login.
NOTE: In the event of an error, the command outputs
all tests performed up to and including the test that
failed, as well as all error messages.
Synopsis
testfeature -f adkrb -u <username> [-d
<diagnostic-message-level>]
testfeature -f ldap
Description Tests LDAP configuration and operation, and reports
success as each stage of the authentication process
proceeds. On successful completion, this command prints
the CMC privileges assumed by the specified <
username
>.
If a failure occurs, the command terminates with an error
message that displays the required corrective action. Use
the optional -d switch to obtain additional diagnostic
information, as needed.
Synopsis
testfeature -f ldap -u <username> -p
<password>
[-d <diagnostic-message-level>]
testtrap
Description Tests the RAC’s SNMP trap alerting feature by sending a test trap from iDRAC to a
specified destination trap listener on the network.
To use this subcommand, you must have Test Alerts permission.
102