Reference Guide
cfgLdapGroupAttribute (Read/Write)
Description Specifies which LDAP attribute is used to check for group
membership. This should be an attribute of the group
class. If not specified, then iDRAC or CMC uses the
member and unique member attributes.
Legal Values String. Maximum length = 254
Default Null
cfgLdapGroupAttributeIsDN (Read/Write)
Description For iDRAC: When it is set to 1, iDRAC compares the
userDN retrieved from the directory to compare to the
members of the group; if it is set to 0, the user name
provided by the login user is used to compare to the
members of the group. This does not impact the search
algorithm for the bind. iDRAC always searches the userDN
and uses the userDN to bind.
For CMC: If enabled, the CMC performs DN matching,
otherwise the CMC uses the user name provided at login
for matching.
Legal Values
• 1 (TRUE)—Use the
userDN
from the LDAP Server
• 0 (FALSE)—Use the
userDN
provided by the login
user
Default 1
cfgLdapBinddn (Read/Write)
Description The distinguished name of a user used to bind to the
server when searching for the login user's DN. If not
provided, an anonymous bind is used. This is optional but
is required if anonymous bind is not supported.
NOTE: If cfgLDAPBindDN is [null] and
cfgLDAPBindPassword is [null], then the CMC
attempts an anonymous bind.
Legal Values String. Maximum length = 254
Default Null
cfgLdapBindpassword (Write Only)
Description
A bind password to use in conjunction with the bindDN. The bind password is
sensitive data, and should be protected. This is optional but is required if anonymous
bind is not supported.
Legal Values String. Maximum length = 254
193