CLI Guide
Each LDAP-authenticated user assumes the total set of CMC privileges assigned to the matching LDAP distinguished names that the user
belongs to. That is, if the user belongs to multiple role group DNs, the user receives all associated privileges for that DNs.
The following sections provide information about the objects in the cfgLdapRoleGroup.
cfgLDAPRoleGroupIndex (Read Only)
Table 271. Details of cfgLDAPRoleGroupIndex attribute
Description It is the index value of the Role Group Object.
Legal Values
An integer between 1 and 5
Default
<instance>
cfgLDAPRoleGroupDN (Read or Write)
Table 272. Details of cfgLDAPRoleGroupDN attribute
Description It is the Domain Name of the group in this index.
Congure the LDAP distinguished name (DN) for the role group instance.
Legal Values
String maximum length = 1024
Default
None
Example
racadm getconfig -g cfgLDAPRoleGroup -o cfgLDAPRoleGroupDN -i 1 <everyone> <groups> <openldap>
<com>
cfgLDAPRoleGroupPrivilege (Read or Write)
Table 273. Details of cfgLDAPRoleGroupPrivilege attribute
Description
A bit–mask dening the privileges associated with this particular group.
Legal Values
0x00000000 to 0x000001
Default
0x000
Example
racadm getconfig -g cfgLDAPRoleGroup -o cfgLDAPRoleGroupPrivilege -i 1 0x000001ff
cfgStandardSchema
This group contains parameters to congure the Active Directory standard schema settings.
Use this object with the cong or getcong subcommands.
140
CMC Property Database Group and Object Descriptions