Oracle Sun SPARC Enterprise M3000 Reference Manual page 167

expsearchmode
strictcertmode
dnslocatorquery
default
EXAMPLES
EXAMPLE 1
XSCF>
EXAMPLE 2
XSCF>
OU=Groups,DC=Sales,DC=aCompany,DC=com
EXAMPLE 3
XSCF>
OU=Groups,DC=Sales,DC=aCompany,DC=com
EXAMPLE 4
XSCF>
Enable or disable expanded search mode. The default
Active Directory functionality is intentionally restrictive
to ensure proper security. Search criteria can be expanded
to accommodate specific customer environments. The
expanded search mode is disabled by default, which
means the UserPrincipalName (UPN) is expected to have
a fully qualified domain name suffix. When expanded
search mode is enabled, more searches are attempted if
the more specific UPN search does not immediately
succeed.
Enable or disable strictcertmode mode. This mode is
disabled by default; the channel is secure, but limited
validation of the certificate is performed. If strictcertmode
is enabled, the server's certificate must have already been
uploaded to the server so that the certificate signatures
can be validated when the server certificate is presented.
Data is always protected, even if strictcertmode is
disabled. Strictcertmode applies to primary and alternate
servers alike.
Configure the DNS locator query. DNS and DNS Locator
Mode must be enabled for DNS Locator Queries to work.
The DNS Locator service query identifies the named DNS
service. See EXAMPLES, below, for important
information.
Reset Active Directory settings to factory default.
Configures the Active Directory primary server, specifying a port other than
the default.
setad server 10.1.12.250:4040
Sets name for administrator group 3.
setad group administrator -i 3 name CN=spSuperAdmin, \
Sets name for custom group 2.
setad group custom -i 2 name CN=spLimitedAdmin, \
Sets roles for custom group 2.
setad group custom -i 2 roles auditadm,platop
setad(8)
System Administration 153