New-OVLdapDirectory
Syntax
New-OVLdapDirectory
[-Name] <String>
[-AD]
[-BaseDN] <String>
[-Servers] <Array>
[-Username] <String>
[-Password] <SecureString>
[-Credential <PSCredential>]
[-ServiceAccount]
[-ApplianceConnection] <Object>
[<CommonParameters>]
New-OVLdapDirectory
[-Name] <String>
[-OpenLDAP]
[-BaseDN] <String>
[-OrganizationalUnits] <Array>
[-Servers] <Array>
[-UserNamingAttribute <String>]
[-Username] <String>
[-Password] <SecureString>
[-Credential <PSCredential>]
[-ServiceAccount]
[-ApplianceConnection] <Object>
[<CommonParameters>]
Description
This Cmdlet will create a new Directory for appliance authentication. HPE OneView currently supports either Active Directory or LDAP (e.g. OpenLDAP) for user authentication. The New-OVLdapServer Cmdlet is used to assist defining directory servers address, public SSL certificate and LDAP over SSL TCP port.
Examples
Example 1
$ServerA,$ServerB = servera.domain.com,serverb.domain.com | New-OVLdapServer
New-OVLdapDirectory -name Domain1 -AD -basedn "dc=domain,dc=com" -servers $ServerA,$ServerB -Username MyAdminAccount@domain.com
Add a new directory with two directory servers, and be prompted for your directory account password.
Example 2
$ServerA = New-OVLdapServer -Name contoso.com
New-OVLdapDirectory -name Domain1 -AD -basedn "dc=domain,dc=com" -servers $ServerA -Username MyAdminAccount@domain.com -ServiceAccount
Add a new Active Directory authentication directory, using SRV domain name, and specify to use the account as a service account.
Parameters
-Name <String>
Directory name to add. Does not need to match LDAP/AD Directory Name, but should.
| Aliases | None |
|---|---|
| Required? | True |
| Position? | Named |
| Default value | |
| Accept pipeline input? | false |
| Accept wildcard characters? | False |
-AD <SwitchParameter>
Using Active Directory, which sets the authProtocol to AD and userNameField to CN
| Aliases | None |
|---|---|
| Required? | False |
| Position? | Named |
| Default value | False |
| Accept pipeline input? | false |
| Accept wildcard characters? | False |
-OpenLDAP <SwitchParameter>
Using LDAP (i.e. OpenLDAP), which sets the authProtocol to LDAP and userNameField to UID
| Aliases | LDAP |
|---|---|
| Required? | False |
| Position? | Named |
| Default value | False |
| Accept pipeline input? | false |
| Accept wildcard characters? | False |
-BaseDN <String>
Directory Base DN (E.g. dc=domian,dc=local)
| Aliases | root, rootdn |
|---|---|
| Required? | True |
| Position? | Named |
| Default value | |
| Accept pipeline input? | false |
| Accept wildcard characters? | False |
-UserAttribute <String>
| Aliases | |
|---|---|
| Required? | True |
| Position? | Named |
| Default value | |
| Accept pipeline input? | |
| Accept wildcard characters? | False |
-OrganizationalUnits <Array>
OpenLDAP OU"s to begin search for Directory Group and User Account authentication.
[E.g]. ou=admins,ou=contoso
| Aliases | None |
|---|---|
| Required? | True |
| Position? | Named |
| Default value | |
| Accept pipeline input? | false |
| Accept wildcard characters? | False |
-Servers <Array>
Array of Directory Servers and their settings. Must include the following:
- Server Name (FQDN or IP)
- Public SSL Certificate
- SSL Port, if not default 636
| Aliases | None |
|---|---|
| Required? | True |
| Position? | Named |
| Default value | |
| Accept pipeline input? | false |
| Accept wildcard characters? | False |
-Username <String>
Directory Username to authenticate with.
| Aliases | u, user |
|---|---|
| Required? | True |
| Position? | Named |
| Default value | |
| Accept pipeline input? | false |
| Accept wildcard characters? | False |
-Password <SecureString>
Directory Username password.
| Aliases | p, pass |
|---|---|
| Required? | True |
| Position? | Named |
| Default value | |
| Accept pipeline input? | false |
| Accept wildcard characters? | False |
-ApplianceConnection <Object>
Specify one or more [HPEOneView.Appliance.Connection] object(s) or Name property value(s).
| Aliases | Appliance |
|---|---|
| Required? | True |
| Position? | Named |
| Default value | (${Global:ConnectedSessions} | ? Default) |
| Accept pipeline input? | false |
| Accept wildcard characters? | False |
-Credential <PSCredential>
Use this parameter if you want to provide a PSCredential object instead.
| Aliases | None |
|---|---|
| Required? | False |
| Position? | Named |
| Default value | |
| Accept pipeline input? | true (ByValue) |
| Accept wildcard characters? | False |
-ServiceAccount <SwitchParameter>
Use to indicate the provided credential is a Service Account. Required for when configuring an Active Directory auth directory for two-factor authentication.
| Aliases | None |
|---|---|
| Required? | False |
| Position? | Named |
| Default value | |
| Accept pipeline input? | false |
| Accept wildcard characters? | False |
-UserNamingAttribute <String>
Specify the naming attribute for OpenLDAP directories. Allowed values: * CN * UID Default Value: CN
| Aliases | None |
|---|---|
| Required? | False |
| Position? | Named |
| Default value | CN |
| Accept pipeline input? | false |
| Accept wildcard characters? | False |
<CommonParameters>
This cmdlet supports the common parameters: Verbose, Debug, ErrorAction, ErrorVariable, WarningAction, WarningVariable, OutBuffer, PipelineVariable, and OutVariable. For more information, see about_CommonParameters (http://go.microsoft.com/fwlink/?LinkID=113216)
Input Types
Account Password that will be used to validate the directory
Return Values
Configured Authentication Directory
Multiple configured Authentication Directories