Manualshelf

Quick Reference Guide

ManualsBrandsDell ManualsSoftwareDell Chassis Management Controller Version 4.0
151152153154155156157158159160
cfgLdapRoleGroup
For iDRAC, this group allows the user to configure role groups for LDAP.
Use this object with the config or getconfig subcommands.
To use this object property for CMC, you must have Chassis Configuration Administrator privilege.
NOTE: For CMC, you can configure any setting that is not preceded by the hash sign (#) in the output. To modify a
configurable object, use the -o option.
For CMC, this group configures Generic LDAP Role group descriptions and defines the CMC privileges that LDAP-
authenticated users are granted.
cfgLDAPRoleGroup is indexed, containing instances numbered from 1 to 5. Each object instance consists of a pair of
properties:
cfgLDAPRoleGroupDN: an LDAP distinguished name (DN)
cfgLDAPRoleGroupPrivilege: a CMC privilege map
Each LDAP-authenticated user assumes the total set of CMC privileges assigned to the matching LDAP distinguished
names that the user belongs to.
That is, if the user belongs to multiple role group DNs, the user receives all associated privileges for those DNs.
The following sections provide information about the objects in the cfgLdapRoleGroup group.
cfgLdapRoleGroupIndex (Read Only)
Description This is the index value of the Role Group Object.
This object is applicable only for iDRAC.
Legal Values An integer between 1 and 5
Default <
instance
>
cfgLdapRoleGroupDN (Read/Write)
Description This is the Domain Name of the group in this index.
For CMC, configure the LDAP distinguished name (DN) for
the role group instance.
Legal Values String. Maximum length = 1024
Default None
Example
racadm getconfig -g cfgLDAPRoleGroup -o cfgLDAPRoleGroupDN
-i 1 cn=everyone,ou=groups,dc=openldap,dc=com
cfgLdapRoleGroupPrivilege (Read/Write)
Description
A bit–mask defining the privileges associated with this
particular group.
Legal Values 0x00000000 to 0x000001ff
160