No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Command Reference 10

OceanStor 5300 V3, 5500 V3, 5600 V3, 5800 V3, and 6800 V3 Storage System V300R003

"Based on the CLI, this document describes how to use various commands classified by functions and how to set the CLI and manage the storage system through these commands. The document that you browse online matches the latest C version of the product. Click Download to download documents of other C versions."
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
show domain ldap

show domain ldap

Function

The show domain ldap command is used to query LDAP domain authentication configurations.

Format

show domain ldap

Parameters

None

Level

Guest

Usage Guidelines

None

Example

Query LDAP domain authentication configurations.

admin:/>show domain ldap
IP Address List : 10.40.25.8 
Base DN         : dc=huawei,dc=com 
Port            : 389 
Password Hash   : Md5 
Transfer Type   : LDAP
User Suffix     : dc=huawei,dc=com 
Group Suffix    : dc=huawei,dc=com 
Shadow Suffix   : dc=huawei,dc=com
Timelimit       : 3
Bind Timelimit  : 3
Idle Timelimit  : 30
Bind DN         : cn=root,dc=huawei,dc=com 

System Response

The following table describes the parameter meanings.

Parameter

Meaning

IP Address List

IP address or host name of the LDAP server. A maximum of three IP addresses can be specified, and they must be separated from each other with commas (,).

Base DN

Base distinguished name (DN) of the LDAP directory, that is, the root directory of the LDAP server.

Port

LDAP listening port.

Password Hash

Password encryption method. The values can be "clear", "md5", and "crypt".

Transfer Type

LDAP encryption algorithm. The value can be "LDAP" and "LDAPS", where:

  • "LDAPS": the SSL encryption algorithm is enabled.
  • "LDAP": the SSL encryption algorithm is disabled.

Bind DN

A DN bound with an LDAP server. If anonymous binding can not be done on an LDAP server, bind DNs before retrieving user and group information.

User Suffix

Filter criteria for querying users. If this parameter is not configured, the querying starts from the root directory.

Group Suffix

Filter criteria for querying groups. If this parameter is not configured, the querying starts from the root directory.

Shadow Suffix

Filter criteria for querying passwords. If this parameter is not configured, the querying starts from the root directory.

Timelimit

The parameter specifies the timeout interval of waiting for a response from an LDAP query. If this parameter is not configured, the default value (3 seconds) is used.

Bind Timelimit

The parameter specifies the timeout interval of waiting to connect to an LDAP server. If this parameter is not configured, the default value (3 seconds) is used.

Idle Timelimit

The timeout interval of server disconnection when LDAP is in idle connection. If this parameter is not configured, the default value (30 seconds) is used.

Translation
Download
Updated: 2019-07-22

Document ID: EDOC1000084195

Views: 365638

Downloads: 1594

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next