White Papers

7 Dell OpenManage Power Center 4.0 REST API Reference Guide

1.1.3 Security

The REST services will only be exposed through HTTPs to ensure that the common threats associated with

HTTP traffic are mitigated.

1.1.4 Authentication Mechanism

OMPC uses Basic Authentication along with HTTPs to enable authentication of REST requests.

Each request requires an Authorization header in the request, in the format of base-64 encoded string of the

combination of following credentials:

 username,

 password,

 accountType: Possible values for this field are:

• OMPC_ACCOUNT = 0;

• WIN_LOCAL_ACCOUNT = 1;

• WIN_DOMAIN_ACCOUNT = 2;

• LINUX_LOCAL_ACCOUNT = 3;

• LDAP_ACCOUNT = 4;

 Domain: It is an optional field unless accountType field value is WIN_DOMAIN_ACCOUNT.

Example:

Name=admin, Password=user@123 and AccountType= OMPC_ACCOUNT, no domain specified.

The combination of username, password, and accountType is admin:user@123:0, and the base-64 encoded

string for this combination is YWRtaW46dXNlckAxMjM6MA==

Note: If the credentials are missing or invalid, a 401 (Authorization failure) error is displayed.

This mechanism is only supported when SSL/TLS is enabled for the transport.