Numerous AD properties are customizable for your environment. Assuming the AD protocol is enabled (see Enable the AD Client (Oracle ILOM CLI)), you can use this task to configure the various protocol properties.
-> set /SP/clients/activedirectory/ timeout=10 Set 'timeout' to '10' ->
-> set /SP/clients/activedirectory/ defaultrole=o Set 'defaultrole' to 's' [os] ->
For the role, you can use the characters of the aucros string to enable the respective abilities. See User Roles and Permissions. The operator role (o) is added to whatever single role you set.
-> set /SP/clients/activedirectory/ expsearchmode=enabled Set 'expsearchmode' to 'enabled' ->
-> set /SP/clients/activedirectory/ logdetail=property_value ->
where property_value is:
high, medium, low, or trace for more or less information in the log.
none, for either no details, or to completely disable logging.
For example, to include the most amount of information, type:
-> set /SP/clients/activedirectory/ logdetail=high Set 'logdetail' to 'high' ->
-> set /SP/clients/activedirectory/ strictcertmode=enabled Set 'strictcertmode' to 'enabled' ->
-> set /SP/clients/activedirectory/ strictcredentialerrormode=enabled Set 'strictcredentialerrormode' to 'enabled' ->