Home » HP Manuals » Storage Devices » HP 3PAR StoreServ 7400 2-node » Manual Viewer

HP 3PAR StoreServ 7400 2-node HP 3PAR Command Line Interface Reference (OS 3.1 - Page 275

Table 3 Values for, Specifiers, continued

View all HP 3PAR StoreServ 7400 2-node manuals

Add to My Manuals
Save this manual to your list of manuals

Page 275 highlights

Table 3 Values for setauthparam Specifiers (continued) ldap-ssl-cacert Indicates the path name of the file containing the certificate of the Certificate Authority that has issued the LDAP server's certificate, or a "- " to prompt you to enter the certificate text. ldap-StartTLS Set this parameter to one of the following: • no - to not request the server use StartTLS . Default. • try - to request the server use StartTLS but does not require it to proceed. • require - requests that the server uses StartTLS and continues only when it succeeds. binding The LDAP binding type must be one of the following: • simple - use simple binding with the server. • SASL - use a SASL mechanism that is expected by the server, with the mechanism set by the sasl-mechanism variable. user-dn-base When using simple binding, the authentication process attempts to bind the user to an entry in the server's Directory Information Tree (DIT). The Distinguished Name (DN) of the entry is a concatenation of the value of user-attr, " = ", the username, " , ", and the value of user-dn-base . If group-obj is set to posixGroup, the value of user-dn-base is also used as the base for searching for the user's posixAccount entry, regardless of binding type. user-attr Indicates the attribute used to form a DN for simple binding. When the attribute ends with a back slash, the DN is the concatenation of the value of the user-attr variable and the username . When the attribute does not end with a back slash, it is as described for the user-dn-base variable. sasl-mechanism When the binding is SASL, the SASL mechanism must be one supported by the LDAP server. The system allows the mechanisms of PLAIN, DIGEST-MD5, and GSSAPI. kerberos-server kerberos-realm allow-ssh-key Indicates the numeric IP address of the Kerberos server if different from the LDAP server. The Kerberos realm. Set this value to 1 to allow LDAP users to set a public SSH key with the setsshkey command (default 0). Clearing or setting the variable to 0 disables the setting of new keys for LDAP users but any existing keys remain until they are removed with the removesshkey variable. This parameter only affects LDAP users, not local users. groups-dn Indicates the base of the subtree in the DIT in which to search for objects that hold group information. It is mutually exclusively with the accounts-dn variable. group-obj Indicates the objectClass attribute of a group object. group-name-attr The attribute in the group object that holds the group's name. member-attr The attribute that holds the names of users in the group. accounts-dn Indicates the base of the subtree in the DIT in which to search for objects that hold account information. It is mutually exclusively with the groups-dn variable. setauthparam 275

Section	Page
HP 3PAR Command Line Interface Reference	1
Contents	3
1 CLI Command Syntax and Conventions	11
Syntax and Conventions	11
Syntax Rules	11
Glob-Style Pattern	12
Numbering Formats	13
Object Sets	13
Regular Expressions Patterns	13
Provisioning	14
VV Name Patterns	15
Filename Conventions for Windows®	16
Typical Command Layout in this Book	16
Global Options and Environment Variables	17
Exit Status	17
2 Commands Quick Reference	18
Adaptive Optimization (AO) Commands	18
Control Commands	18
Disk Enclosure Management Commands	19
Drive Cage Management	19
Physical Disk Management	19
Domain Management Commands	19
Health and Alert Management Commands	20
Alerts	20
Alert Severity Levels	20
Events	21
System Health	21
Help and Utility Commands	21
Task Management Commands	21
LDAP Management Commands	22
Licensing Management Commands	22
Node Subsystem Management Commands	22
Firmware Versions	22
Node Date Information	23
Controller Node Properties	23
Controller Node EEPROM Log	23
Array and Controller Node Information	23
Network Interface Configuration	24
Port Information	24
Battery Management	25
System Manager	25
Node Rescue	25
Performance Management Commands	25
Chunklet Statistics	25
Data Cache Memory Statistics	26
Node CPU Statistics	26
Logical Disk Statistics	26
Link Statistics	26
Physical Disk Statistics	26
Port Statistics	26
System Tuner	27
Dynamic Optimization	27
Virtual LUN (Export) Statistics	27
Virtual Volume Statistics	27
Remote Copy Volume Statistics	28
Preserved Data Commands	28
Replication Commands	28
Physical Copy	28
Remote Copy	28
Virtual Copy	30
Service Commands	30
Disk Enclosure	30
Node	31
General System Maintenance	31
QoS Commands	31
System Upgrade	32
SNMP Agent Commands	32
System Reporter Commands	33
CIM Server Commands	34
Sparing Commands	34
SSH Access Commands	35
Task Schedule Commands	35
User Management Commands	36
Volume Management Commands	37
Common Provisioning Group Management	37
Host Management	37
Logical Disk Management	38
Space and Storage Management	38
Template Management	39
Virtual Volume Management	39
Virtual LUN (Export) Management	41
Web Services API (WSAPI) Commands	41
3 Add Command	42
addsnmpmgr	42
4 Admit Commands	44
admithw	44
admitpd	46
admitrcopylink	48
admitrcopytarget	50
admitrcopyvv	51
admitvv	54
5 Cancel Command	55
canceltask	55
6 Change Command	56
changedomain	56
7 Check Commands	57
checkhealth	57
checkld	59
checkpassword	61
checkpd	63
checkport	65
checkrclink	67
checksnmp	70
checkvv	71
8 CLI Command	72
cli	72
9 Compact Commands	75
compactcpg	75
compactld	77
10 Control Commands	79
controlencryption	79
controliscsiport	81
controlmag	83
controlpd	85
controlport	87
11 Create Commands	95
createald	95
createaldvv	99
createaocfg	105
createavv	107
createcpg	110
createdomain	115
createdomainset	116
creategroupsv	117
creategroupvvcopy	119
createhost	121
createhostset	123
createld	125
creatercopygroup	127
creatercopytarget	129
createsched	131
createsnmpuser	134
createspare	135
createsv	137
createtemplate	139
createtpvv	145
createuser	149
createvlun	151
createvv	154
createvvcopy	158
createvvset	162
12 Dismiss Commands	164
dismisspd	164
dismissrcopylink	165
dismissrcopytarget	167
dismissrcopyvv	168
13 Free Command	170
freespace	170
14 Grow Commands	171
growaldvv	171
growavv	176
growtpvv	178
growvv	179
15 Hist Commands	180
histch	180
histld	183
histpd	186
histport	191
histrcvv	194
histvlun	197
histvv	201
16 Import Command	204
importvv	204
17 Locate Commands	206
locatecage	206
locatenode	208
locatesys	209
18 Move Commands	210
movech	210
movechtospare	213
movepd	215
movepdtospare	217
moverelocpd	219
movetodomain	223
19 Promote Commands	225
promotesv	225
promotevvcopy	227
20 Remove Commands	228
removealert	228
removeaocfg	230
removecpg	231
removedomain	233
removedomainset	234
removehost	235
removehostset	237
removeld	238
removercopygroup	240
removercopytarget	242
removesched	243
removesnmpmgr	244
removesnmppw	246
removesnmpuser	247
removespare	248
removesshkey	250
removetask	251
removetemplate	253
removeuser	254
removeuserconn	255
removevlun	256
removevv	258
removevvset	260
21 Service Commands	261
servicecage	261
servicehost	263
servicemag	265
servicenode	269
22 Set Commands	271
setalert	271
setaocfg	272
setauthparam	274
setbattery	278
setcage	280
setcim	282
setclienv	284
setcpg	286
setdate	291
setdomain	293
setdomainset	295
sethost	296
sethostset	299
setlicense	300
setnet	302
setnode	306
setntp	308
setpassword	309
setpd	311
setqos	312
setrcopygroup	314
setrcopytarget	319
setsched	322
setsnmpmgr	324
setsnmppw	326
setsnmpuser	328
setsshkey	329
setstatch	331
setstatpdch	332
setsys	333
setsysmgr	336
settask	338
settemplate	339
setuser	341
setuseracl	342
setvv	344
setvvset	348
setwsapi	349
23 Show Commands	350
showalert	350
showaocfg	352
showauthparam	353
showbattery	354
showblock	358
showcage	361
showcim	365
showclienv	367
showcpg	368
showdate	373
showdomain	374
showdomainset	376
showeeprom	378
showeventlog	381
showfirmwaredb	384
showhost	386
showhostset	389
showinventory	391
showiscsisession	392
showld	394
showldch	400
showldmap	404
showlicense	405
shownet	407
shownode	409
shownodeenv	417
showpatch	419
showpd	420
showpdata	431
showpdch	432
showpdvv	437
showport	440
showportarp	449
showportdev	450
showportisns	453
showportlesb	454
showqos	458
showrcopy	460
showrctransport	464
showrole	467
showrsv	469
showsched	471
showsnmpmgr	473
showsnmppw	474
showsnmpuser	475
showspace	476
showspare	479
showsshkey	481
showsys	482
showsysmgr	486
showtarget	488
showtask	490
showtemplate	494
showtoc	495
showtocgen	496
showuser	497
showuseracl	499
showuserconn	500
showversion	502
showvlun	503
showvv	506
showvvcpg	519
showvvmap	521
showvvpd	523
showvvset	527
showwsapi	529
24 Shutdown Commands	530
shutdownnode	530
shutdownsys	533
25 System Reporter (SR) commands	535
sraomoves	535
srcpgspace	537
srhistld	539
srhistpd	542
srhistport	545
srhistvlun	548
srldspace	551
srpdspace	554
srrgiodensity	556
srstatcmp	558
srstatcpu	560
srstatld	562
srstalink	564
srstatpd	566
srstatport	568
srstatqos	570
srstatvlun	572
srvvspace	574
26 Start Commands	577
startao	577
startcim	579
startld	580
startnoderescue	581
startrcopy	582
startrcopygroup	583
starttask	585
startvv	586
startwsapi	587
27 Stat Commands	588
statch	588
statcmp	592
statcpu	594
statfcoe	596
statiscsi	598
statiscsisession	600
statld	602
statlink	606
statpd	607
statport	612
statqos	616
statrcopy	619
statrcvv	621
statvlun	625
statvv	629
28 Stop Commands	633
stopcim	633
stoprcopy	634
stoprcopygroup	636
stopwsapi	638
29 Sync Command	639
syncrcopy	640
30 Tune Commands	642
tunealdvv	642
tunepd	647
tunesys	651
tunetpvv	654
tunevv	656
31 Update Commands	658
updatesnapspace	658
updatevv	660
32 Upgrade Commands	662
upgradecage	662
upgradepd	664
33 Wait Command	665
waittask	665
34 Support and Other Resources	666
Contacting HP	666
HP 3PAR documentation	666
Typographic conventions	669
HP 3PAR branding information	669
35 Documentation feedback	670

Match case Limit results 1 per page

Table 3 Values for

setauthparam

Specifiers

(continued)

<value>

<param>

Indicates the path name of the file containing the certificate

of the Certificate Authority that has issued the LDAP server's

ldap-ssl-cacert

certificate, or a “– “ to prompt you to enter the certificate

text.

Set this parameter to one of the following:

ldap-StartTLS

•

– to not request the server use StartTLS . Default.

•

try

– to request the server use StartTLS but does not

require it to proceed.

•

require

– requests that the server uses StartTLS and

continues only when it succeeds.

The LDAP binding type must be one of the following:

binding

•

simple

– use simple binding with the server.

•

SASL

- use a SASL mechanism that is expected by the

server, with the mechanism set by the sasl-mechanism

variable.

When using simple binding, the authentication process

attempts to bind the user to an entry in the server's Directory

user-dn-base

Information Tree (DIT). The Distinguished Name (DN) of

the entry is a concatenation of the value of user-attr, " = ",

the username, " , ", and the value of

user-dn-base

. If

group-obj

is set to

posixGroup

, the value of

user-dn-base

is also used as the base for searching for

the user's posixAccount entry, regardless of binding type.

Indicates the attribute used to form a DN for simple binding.

When the attribute ends with a back slash, the DN is the

user-attr

concatenation of the value of the

user-attr

variable

and the username . When the attribute does not end with

a back slash, it is as described for the

user-dn-base

variable.

When the binding is SASL, the SASL mechanism must be

one supported by the LDAP server. The system allows the

mechanisms of

PLAIN

DIGEST-MD5

, and

GSSAPI

sasl-mechanism

Indicates the numeric IP address of the Kerberos server if

different from the LDAP server.

kerberos-server

The Kerberos realm.

kerberos-realm

Set this value to

to allow LDAP users to set a public SSH

key with the

setsshkey

command (default 0). Clearing

allow-ssh-key

or setting the variable to 0 disables the setting of new keys

for LDAP users but any existing keys remain until they are

removed with the

removesshkey

variable. This parameter

only affects LDAP users, not local users.

Indicates the base of the subtree in the DIT in which to

search for objects that hold group information. It is mutually

exclusively with the

accounts-dn

variable.

groups-dn

Indicates the

objectClass

attribute of a group object.

group-obj

The attribute in the group object that holds the group's

name.

group-name-attr

The attribute that holds the names of users in the group.

member-attr

Indicates the base of the subtree in the DIT in which to

search for objects that hold account information. It is

mutually exclusively with the

groups-dn

variable.

accounts-dn

setauthparam

275