The switch hosts an AD client that supports management of AD users, including roles, servers and ports, groups, locator properties, certificates, search properties, and credentials.
-> show -d properties /SP/clients/activedirectory /SP/clients/activedirectory Properties: address = 0.0.0.0 defaultrole = Operator dnslocatormode = disabled expsearchmode = disabled logdetail = none port = 0 state = disabled strictcertmode = disabled strictcredentialerrormode = disabled timeout = 4 ->
-> show -d properties /SP/clients/activedirectory/admingroups/X ->
where X is 1 through 5 for the admin group.
For example, to display admin group 1's properties, type:
-> show -d properties /SP/clients/activedirectory/admingroups/1 /SP/clients/activedirectory/admingroups/1 Properties: name = (none) ->
-> show -d properties /SP/clients/activedirectory/customgroups/X ->
where X is 1 through 5 for the custom group.
For example, to display custom group 1's properties, type:
-> show -d properties /SP/clients/activedirectory/customgroups/1 /SP/clients/activedirectory/customgroups/1 Properties: name = (none) roles = (none) ->
-> show -d properties /SP/clients/activedirectory/opergroups/X ->
where X is 1 through 5 for the operator group.
For example, to display operator group 1's properties, type:
-> show -d properties /SP/clients/activedirectory/opergroups/1 /SP/clients/activedirectory/opergroups/1 Properties: name = (none) ->
-> show -d properties /SP/clients/activedirectory/userdomains/X ->
where X is 1 through 5 for the user domain.
For example, to show user domain 1's properties, type:
-> show -d properties /SP/clients/activedirectory/userdomains/1 /SP/clients/activedirectory/userdomains/1 Properties: name = (none) ->
-> show -d properties /SP/clients/activedirectory/alternateservers/X ->
where X is 1 through 5 for the alternate server.
For example, to display alternate server 1's properties, type:
-> show -d properties /SP/clients/activedirectory/alternateservers/1 /SP/clients/activedirectory/alternateservers/1 Properties: address = (none) port = 0 ->
-> show -d properties /SP/clients/activedirectory/alternateservers/X/cert ->
where X is 1 through 5 for the alternate server.
For example, to display alternate server 1's certificate, type:
-> show -d properties /SP/clients/activedirectory/alternateservers/1/cert /SP/clients/ldapssl/activedirectory/1/cert Properties: certstatus = certificate not present clear_action = (Cannot show property) issuer = (none) load_uri = (Cannot show property) serial_number = (none) subject = (none) valid_from = (none) valid_until = (none) version = (none) ->
-> show -d properties /SP/clients/activedirectory/dnslocatorqueries/X/cert ->
where X is 1 through 5 for the locator query.
For example, to display locator query 1's properties, type:
-> show -d properties /SP/clients/activedirectory/dnslocatorqueries /SP/clients/activedirectory/dnslocatorqueries/1 Properties: service = _ldap._tcp.gc._msdcs.DOMAIN.PORT:3269 ->
Different locator queries can be configured for different ports of the same service and domain, or for entirely different services or domains.