Quick Reference Guide
cfgLdapGroupAttributeIsDN (Read/Write)
Description For iDRAC: When it is set to 1, iDRAC compares the
userDN retrieved from the directory to compare to the
members of the group; if it is set to 0, the user name
provided by the login user is used to compare to the
members of the group. This does not impact the search
algorithm for the bind. iDRAC always searches the userDN
and uses the userDN to bind.
For CMC: If enabled, the CMC performs DN matching,
otherwise the CMC uses the user name provided at login
for matching.
Legal Values
• 1 (TRUE)—Use the
userDN
from the LDAP Server
• 0 (FALSE)—Use the
userDN
provided by the login
user
Default 1
cfgLdapBinddn (Read/Write)
Description The distinguished name of a user used to bind to the
server when searching for the login user's DN. If not
provided, an anonymous bind is used. This is optional but
is required if anonymous bind is not supported.
NOTE:
If cfgLDAPBindDN is [null] and
cfgLDAPBindPassword is [null], then the CMC
attempts an anonymous bind.
Legal Values String. Maximum length = 254
Default Null
cfgLdapBindpassword (Write Only)
Description A bind password to use in conjunction with the bindDN. The bind password is
sensitive data, and should be protected. This is optional but is required if anonymous
bind is not supported.
Legal Values String. Maximum length = 254
Default Null
cfgLdapSearchFilter (Read/Write)
Description A valid LDAP search filter. This is used if the user attribute
cannot uniquely identify the login user within the chosen
baseDN. The search filter only applies to userDN search
and not the group membership search.
Legal Values
• For iDRAC: String of maximum length = 254
characters
181