CLI Guide
cfgLDAPPort (Read or Write)
Table 223. Details of cfgLDAPPort attribute
Description
Port of LDAP over SSL. Non-SSL port is not supported.
Legal Values
1–65535
Default
636
cfgLDAPBaseDN (Read or Write)
Table 224. Details of cfgLDAPBaseDN attribute
Description
The domain name of the branch of the directory where all searches must start.
Legal Values
String. Maximum length = 254
Default
Null
cfgLDAPUserAttribute (Read or Write)
Table 225. Details of cfgLDAPUserAttribute attribute
Description
To search for, specify the user attribute. It is recommended to be unique within the chosen baseDN, otherwise a
search filter must be configured to make sure the uniqueness of the login user. If the userDN cannot be uniquely
identified, login is unsuccessful with error.
Legal Values
String. Maximum length = 254
Default
Null
cfgLDAPGroupAttribute (Read or Write)
Table 226. Details of cfgLDAPGroupAttribute attribute
Description
Specifies which LDAP attribute is used to check for group membership. It must be an attribute of the group class. If
not specified then the member and unique member attributes are used.
Legal Values
String maximum length = 254
Default
Null
cfgLDAPGroupAttributeIsDN (Read or Write)
Table 227. Details of cfgLDAPGroupAttributeIsDN attribute
Description
When it is set to 1, iDRAC compares the userDN retrieved from the directory to compare to the members of the
group. If it is set to 0, the user name provides the login user to compare to the members of the group. It does not
affect the search algorithm for the bind. iDRAC always searches the
userDN and uses the userDN to bind.
If enabled, the CMC performs DN matching, otherwise the CMC uses the user name provided at login for matching.
Legal Values
• 1(TRUE) — Use the userDN from the LDAP Server
• 0(FALSE) — Use the userDN to provide the login user
iDRAC Property Database Group and Object Descriptions 189