The IBMRBSPermission= keyword is used to allow it to be placed anywhere in the attribute field. This enables the LDAP administrator to reuse an existing attribute, therefore preventing an extension to the LDAP schema. This also enables the attribute to be used for its original purpose. You can add the keyword string anywhere in the attribute field. The attribute that you use should allow for a
When the attribute is retrieved successfully, the value that is returned by the LDAP server is interpreted according to the following information:
vDeny Always (bit position 0): If this bit is set, the user always fails authentication. This function can be used to block a particular user or users who are associated with a particular group.
vSupervisor Access (bit position 1): If this bit is set, the user is given administrator privileges. The user has read and write access to every function. When this bit is set, bits 2 through 11 do not have to be set individually.
vRead Only Access (bit position 2): If this bit is set, the user has
vNetworking and Security (bit position 3): If this bit is set, the user can modify the configuration on the Security, Network Protocols, Network Interface, Port Assignments, and Serial Port pages.
vUser Account Management (bit position 4): If this bit is set, the user can add, modify, and delete users and change the Global Login Settings in the Login Profiles page.
vRemote Console Access (bit position 5): If this bit is set, the user can access the remote server console.
vRemote Console and Remote Disk (bit position 6): If this bit is set, the user can access the remote server console and the remote disk functions for the remote server.
vRemote Server Power/Restart Access (bit position 7): If this bit is set, the user can access the
vBasic Adapter Configuration (bit position 8): If this bit is set, the user can modify configuration parameters on the System Settings and Alerts pages.
vAbility to Clear Event Logs (bit position 9): If this bit is set, the user can clear the event logs. All users can view the event logs, but this particular permission is required to clear the logs.
vAdvanced Adapter Configuration (bit position 10): If this bit is set, the user has no restrictions when configuring the adapter. In addition, the user is said to have administrative access to the Remote Supervisor Adapter II, meaning that the user can also perform the following advanced functions: firmware upgrades, PXE network boot, restoring adapter factory defaults, modifying and restoring adapter configuration from a configuration file, and restarting and resetting the adapter.
vReserved (bit position 11): This bit is reserved for future use.
If none of the bits are set, the user has