set /SP/clients/ldap

This command is available to Administrators.

Purpose

Use this command to configure the properties associated with LDAP authentication on a service processor.

Syntax

set /SP/clients/ldap [binddn=DNuser bindpw=DNpassword defaultrole=[Administrator|Operator] ipaddress=ldapserverIP port=port# searchbase="ou=people, ou=sales, dc=sun, dc=com" state=[enabled|disabled]]

Properties

  • binddn - Displays the Distinguished Name (DN) of a read-only proxy user on the LDAP server. ILOM must have read-only access to your LDAP server to search for and to authenticate users.

  • bindpw - Type the password of the read-only user.

  • defaultrole - You must assign a permission level that will apply to all LDAP users, either Administrator or Operator.

  • ipaddress - IP Address of your LDAP server.

  • port - Port number used to communicate with your LDAP server.

  • searchbase - enter the branch of your LDAP server to search for users. For example, ou=people, ou=sales, dc=sun, dc=com.

  • state - Choose enabled or disabled to control LDAP authentication.

Example

 -> set /SP/clients/ldap binddn=proxyusr bindpw=password defaultrole=operator state=enabled
Set 'binddn' to 'proxyusr'
Set 'bindpw' to 'password'
Set 'defaultrole' to 'operator'
Set 'state' to 'enabled'