Go to main content

Oracle® ILOM Protocol Management Reference for SNMP and IPMI Firmware Release 3.2.x

Exit Print View

Updated: January 2017
 
 

Manage LDAP/SSL Custom Groups

Note -  You can use the get and set commands to configure the LDAP/SSL Custom Groups settings. For a description of the MIB objects used in this procedure, see the table that follows the procedure.
  1. Log in to a host that has an SNMP tool and the Oracle ILOM MIBs installed. For example, type:

    ssh username@snmp_manager_ipaddress

    Password: password

  2. Refer to the following SNMP command examples:
    • To view the name of LDAP/SSL custom group ID number 2, type: 
      % snmpget SNMP_agent
ilomCtrlLdapSslCustomGroupName.2
SUN-ILOM-CONTROL-MIB::ilomCtrlLdapSslCustomGroupName.2 = STRING: 
CN=SpSuperCust,OU=Groups,DC=johns,DC=oracle,DC=com
    • To set the name of LDAP/SSL custom group ID number 2 to CN=SpSuperCust,OU=Groups,DC=bills,DC=oracle,DC=com, type: 
      % snmpset SNMP_agent 
ilomCtrlLdapSslCustomGroupName.2 s CN=SpSuperCust,OU=Groups,DC=
bills,DC=oracle,DC=com
SUN-ILOM-CONTROL-MIB::ilomCtrlLdapSslCustomGroupName.2 = STRING: 
CN=SpSuperCust,OU=Groups,DC=bills,DC=oracle,DC=com
% snmpget SNMP_agent
ilomCtrlLdapSslCustomGroupName.2
SUN-ILOM-CONTROL-MIB::ilomCtrlLdapSslCustomGroupName.2 = STRING: 
CN=SpSuperCust,OU=Groups,DC=bills,DC=oracle,DC=com
    • To view the roles of LDAP/SSL custom group ID number 2, type: 
      % snmpget SNMP_agent
ilomCtrlLdapSslCustomGroupRoles.2
SUN-ILOM-CONTROL-MIB::ilomCtrlLdapSslCustomGroupRoles.2 = STRING: 
“aucro"
    • To set the roles of LDAP/SSL custom group ID number 2 to User Management and Read Only (u,o), type: 
      % snmpset SNMP_agent
ilomCtrlLdapSslCustomGroupRoles.2 s “uo"
SUN-ILOM-CONTROL-MIB::ilomCtrlLdapSslCustomGroupRoles.2 = STRING: 
"uo"
% snmpget SNMP_agent
ilomCtrlLdapSslCustomGroupRoles.2
SUN-ILOM-CONTROL-MIB::ilomCtrlLdapSslCustomGroupRoles.2 = STRING: 
"uo"

      The following table describes the LDAP/SSL Custom Groups SNMP MIB objects.

      MIB Object
      Description
      Allowed Values
      Type
      Default
      ilomCtrlLdapSsl CustomGroupId
      An integer identifier of the LDAP/SSL custom group entry.
      1 to 5

      Note -  This object is not accessible for reading or writing.

      Integer
      None
      ilomCtrlLdap SslCustomGroup Name
      This string should contain a Distinguished Name that exactly matches one of the group names on the LDAP/SSL server. Any user belonging to one of these groups in this table will be assigned the ILOM role based on the entry's configuration for roles.
      name (maximum of 255 characters)
      String
      None
      ilomCtrlLdap SslCustomGroup Roles
      Specifies the role that a user authenticated through LDAP/SSL should have. Setting this property to legacy roles of Administrator or Operator, or any of the individual role IDs of a, u, c, r, o and s will cause the LDAP/SSL client to ignore the schema stored on the LDAP/SSL server. Setting this object to none clears the value and indicates that the native LDAP/SSL schema should be used. The role IDs can be joined together. For example, aucros, where a=admin, u=user, c=console, r=reset, o=read-only, and s=service.
      administrator,
      operator,
      admin(a),
      user(u),
      console(c),
      reset(r),
      read-only(o),
      service(s),
      none
      String
      None
Copyright © 2014, 2017, Oracle and/or its affiliates. All rights reserved. 
Previous
Next