powerscale 1.7.1, Apr 30 25

powerscale 1.7.1 published on Wednesday, Apr 30, 2025 by dell

powerscale.getLdapProvider

Explore with Pulumi AI

powerscale 1.7.1 published on Wednesday, Apr 30, 2025 by dell

This datasource is used to query the existing LDAP providers from PowerScale array. The information fetched from this datasource can be used for getting the details or for further processing in resource block. PowerScale LDAP provider enables you to define, query, and modify directory services and resources.

Using getLdapProvider

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getLdapProvider(args: GetLdapProviderArgs, opts?: InvokeOptions): Promise<GetLdapProviderResult>
function getLdapProviderOutput(args: GetLdapProviderOutputArgs, opts?: InvokeOptions): Output<GetLdapProviderResult>

def get_ldap_provider(filter: Optional[GetLdapProviderFilter] = None,
                      opts: Optional[InvokeOptions] = None) -> GetLdapProviderResult
def get_ldap_provider_output(filter: Optional[pulumi.Input[GetLdapProviderFilterArgs]] = None,
                      opts: Optional[InvokeOptions] = None) -> Output[GetLdapProviderResult]

func LookupLdapProvider(ctx *Context, args *LookupLdapProviderArgs, opts ...InvokeOption) (*LookupLdapProviderResult, error)
func LookupLdapProviderOutput(ctx *Context, args *LookupLdapProviderOutputArgs, opts ...InvokeOption) LookupLdapProviderResultOutput

> Note: This function is named LookupLdapProvider in the Go SDK.

public static class GetLdapProvider 
{
    public static Task<GetLdapProviderResult> InvokeAsync(GetLdapProviderArgs args, InvokeOptions? opts = null)
    public static Output<GetLdapProviderResult> Invoke(GetLdapProviderInvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetLdapProviderResult> getLdapProvider(GetLdapProviderArgs args, InvokeOptions options)
public static Output<GetLdapProviderResult> getLdapProvider(GetLdapProviderArgs args, InvokeOptions options)

fn::invoke:
  function: powerscale:index/getLdapProvider:getLdapProvider
  arguments:
    # arguments dictionary

The following arguments are supported:

Filter GetLdapProviderFilter

Filter GetLdapProviderFilter

filter GetLdapProviderFilter

filter GetLdapProviderFilter

filter GetLdapProviderFilter

filter Property Map

getLdapProvider Result

The following output properties are available:

Id string: Unique identifier of the LDAP provider instance.
LdapProviders List<GetLdapProviderLdapProvider>: List of LDAP providers.
Filter GetLdapProviderFilter

Id string: Unique identifier of the LDAP provider instance.
LdapProviders []GetLdapProviderLdapProvider: List of LDAP providers.
Filter GetLdapProviderFilter

id String: Unique identifier of the LDAP provider instance.
ldapProviders List<GetLdapProviderLdapProvider>: List of LDAP providers.
filter GetLdapProviderFilter

id string: Unique identifier of the LDAP provider instance.
ldapProviders GetLdapProviderLdapProvider[]: List of LDAP providers.
filter GetLdapProviderFilter

id str: Unique identifier of the LDAP provider instance.
ldap_providers Sequence[GetLdapProviderLdapProvider]: List of LDAP providers.
filter GetLdapProviderFilter

id String: Unique identifier of the LDAP provider instance.
ldapProviders List<Property Map>: List of LDAP providers.
filter Property Map

Supporting Types

GetLdapProviderFilter

Names List<string>
Scope string: If specified as "effective" or not specified, all fields are returned. If specified as "user", only fields with non-default values are shown. If specified as "default", the original values are returned.

Names []string
Scope string: If specified as "effective" or not specified, all fields are returned. If specified as "user", only fields with non-default values are shown. If specified as "default", the original values are returned.

names List<String>
scope String: If specified as "effective" or not specified, all fields are returned. If specified as "user", only fields with non-default values are shown. If specified as "default", the original values are returned.

names string[]
scope string: If specified as "effective" or not specified, all fields are returned. If specified as "user", only fields with non-default values are shown. If specified as "default", the original values are returned.

names Sequence[str]
scope str: If specified as "effective" or not specified, all fields are returned. If specified as "user", only fields with non-default values are shown. If specified as "default", the original values are returned.

names List<String>
scope String: If specified as "effective" or not specified, all fields are returned. If specified as "user", only fields with non-default values are shown. If specified as "default", the original values are returned.

GetLdapProviderLdapProvider

AlternateSecurityIdentitiesAttribute string: Specifies the attribute name used when searching for alternate security identities.
Authentication bool: If true, enables authentication and identity management through the authentication provider.
BalanceServers bool: If true, connects the provider to a random server.
BaseDn string: Specifies the root of the tree in which to search identities.
BindDn string: Specifies the distinguished name for binding to the LDAP server.
BindMechanism string: Specifies which bind mechanism to use when connecting to an LDAP server. The only supported option is the 'simple' value.
BindTimeout double: Specifies the timeout in seconds when binding to an LDAP server.
CertificateAuthorityFile string: Specifies the path to the root certificates file.
CheckOnlineInterval double: Specifies the time in seconds between provider online checks.
CnAttribute string: Specifies the canonical name.
CreateHomeDirectory bool: Automatically create the home directory on the first login.
CryptPasswordAttribute string: Specifies the hashed password value.
EmailAttribute string: Specifies the LDAP Email attribute.
Enabled bool: If true, enables the LDAP provider.
EnumerateGroups bool: If true, allows the provider to enumerate groups.
EnumerateUsers bool: If true, allows the provider to enumerate users.
FindableGroups List<string>: Specifies the list of groups that can be resolved.
FindableUsers List<string>: Specifies the list of users that can be resolved.
GecosAttribute string: Specifies the LDAP GECOS attribute.
GidAttribute string: Specifies the LDAP GID attribute.
GroupBaseDn string: Specifies the distinguished name of the entry where LDAP searches for groups are started.
GroupDomain string: Specifies the domain for this provider through which groups are qualified.
GroupFilter string: Specifies the LDAP filter for group objects.
GroupMembersAttribute string: Specifies the LDAP Group Members attribute.
GroupSearchScope string: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
Groupnet string: Groupnet identifier.
HomeDirectoryTemplate string: Specifies the path to the home directory template.
HomedirAttribute string: Specifies the LDAP Homedir attribute.
Id string: Specifies the ID of the LDAP provider.
IgnoreTlsErrors bool: If true, continues over secure connections even if identity checks fail.
ListableGroups List<string>: Specifies the groups that can be viewed in the provider.
ListableUsers List<string>: Specifies the users that can be viewed in the provider.
LoginShell string: Specifies the login shell path.
MemberLookupMethod string: Sets the method by which group member lookups are performed. Use caution when changing this option directly. Acceptable values: "default", "rfc2307bis".
MemberOfAttribute string: Specifies the LDAP Query Member Of attribute, which performs reverse membership queries.
Name string: Specifies the name of the LDAP provider.
NameAttribute string: Specifies the LDAP UID attribute, which is used as the login name.
NetgroupBaseDn string: Specifies the distinguished name of the entry where LDAP searches for netgroups are started.
NetgroupFilter string: Specifies the LDAP filter for netgroup objects.
NetgroupMembersAttribute string: Specifies the LDAP Netgroup Members attribute.
NetgroupSearchScope string: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
NetgroupTripleAttribute string: Specifies the LDAP Netgroup Triple attribute.
NormalizeGroups bool: Normalizes group names to lowercase before look up.
NormalizeUsers bool: Normalizes user names to lowercase before look up.
NtPasswordAttribute string: Specifies the LDAP NT Password attribute.
NtlmSupport string: Specifies which NTLM versions to support for users with NTLM-compatible credentials. Acceptable values: "all", "v2only", "none".
OcspServerUris List<string>: Specifies the OCSP server URIs. Only available for PowerScale 9.5 and above.
ProviderDomain string: Specifies the provider domain.
RequireSecureConnection bool: Determines whether to continue over a non-TLS connection.
RestrictFindable bool: If true, checks the provider for filtered lists of findable and unfindable users and groups.
RestrictListable bool: If true, checks the provider for filtered lists of listable and unlistable users and groups.
SearchScope string: Specifies the default depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
SearchTimeout double: Specifies the search timeout period in seconds.
ServerUris List<string>: Specifies the server URIs.
ShadowExpireAttribute string: Sets the attribute name that indicates the absolute date to expire the account.
ShadowFlagAttribute string: Sets the attribute name that indicates the section of the shadow map that is used to store the flag value.
ShadowInactiveAttribute string: Sets the attribute name that indicates the number of days of inactivity that is allowed for the user.
ShadowLastChangeAttribute string: Sets the attribute name that indicates the last change of the shadow information.
ShadowMaxAttribute string: Sets the attribute name that indicates the maximum number of days a password can be valid.
ShadowMinAttribute string: Sets the attribute name that indicates the minimum number of days between shadow changes.
ShadowUserFilter string: Sets LDAP filter for shadow user objects.
ShadowWarningAttribute string: Sets the attribute name that indicates the number of days before the password expires to warn the user.
ShellAttribute string: Specifies the LDAP Shell attribute.
SshPublicKeyAttribute string: Sets the attribute name that indicates the SSH Public Key for the user.
Status string: Specifies the status of the provider.
System bool: If true, indicates that this provider instance was created by OneFS and cannot be removed.
TlsProtocolMin string: Specifies the minimum TLS protocol version.
TlsRevocationCheckLevel string: This setting controls the behavior of the certificate revocation checking algorithm when the LDAP provider is presented with a digital certificate by an LDAP server. Acceptable values: "none", "allowNoData", "allowNoSrc", "strict". Only available for PowerScale 9.5 and above.
UidAttribute string: Specifies the LDAP UID Number attribute.
UnfindableGroups List<string>: Specifies the groups that cannot be resolved by the provider.
UnfindableUsers List<string>: Specifies users that cannot be resolved by the provider.
UniqueGroupMembersAttribute string: Sets the LDAP Unique Group Members attribute.
UnlistableGroups List<string>: Specifies a group that cannot be listed by the provider.
UnlistableUsers List<string>: Specifies a user that cannot be listed by the provider.
UserBaseDn string: Specifies the distinguished name of the entry at which to start LDAP searches for users.
UserDomain string: Specifies the domain for this provider through which users are qualified.
UserFilter string: Specifies the LDAP filter for user objects.
UserSearchScope string: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
ZoneName string: Specifies the name of the access zone in which this provider was created.

AlternateSecurityIdentitiesAttribute string: Specifies the attribute name used when searching for alternate security identities.
Authentication bool: If true, enables authentication and identity management through the authentication provider.
BalanceServers bool: If true, connects the provider to a random server.
BaseDn string: Specifies the root of the tree in which to search identities.
BindDn string: Specifies the distinguished name for binding to the LDAP server.
BindMechanism string: Specifies which bind mechanism to use when connecting to an LDAP server. The only supported option is the 'simple' value.
BindTimeout float64: Specifies the timeout in seconds when binding to an LDAP server.
CertificateAuthorityFile string: Specifies the path to the root certificates file.
CheckOnlineInterval float64: Specifies the time in seconds between provider online checks.
CnAttribute string: Specifies the canonical name.
CreateHomeDirectory bool: Automatically create the home directory on the first login.
CryptPasswordAttribute string: Specifies the hashed password value.
EmailAttribute string: Specifies the LDAP Email attribute.
Enabled bool: If true, enables the LDAP provider.
EnumerateGroups bool: If true, allows the provider to enumerate groups.
EnumerateUsers bool: If true, allows the provider to enumerate users.
FindableGroups []string: Specifies the list of groups that can be resolved.
FindableUsers []string: Specifies the list of users that can be resolved.
GecosAttribute string: Specifies the LDAP GECOS attribute.
GidAttribute string: Specifies the LDAP GID attribute.
GroupBaseDn string: Specifies the distinguished name of the entry where LDAP searches for groups are started.
GroupDomain string: Specifies the domain for this provider through which groups are qualified.
GroupFilter string: Specifies the LDAP filter for group objects.
GroupMembersAttribute string: Specifies the LDAP Group Members attribute.
GroupSearchScope string: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
Groupnet string: Groupnet identifier.
HomeDirectoryTemplate string: Specifies the path to the home directory template.
HomedirAttribute string: Specifies the LDAP Homedir attribute.
Id string: Specifies the ID of the LDAP provider.
IgnoreTlsErrors bool: If true, continues over secure connections even if identity checks fail.
ListableGroups []string: Specifies the groups that can be viewed in the provider.
ListableUsers []string: Specifies the users that can be viewed in the provider.
LoginShell string: Specifies the login shell path.
MemberLookupMethod string: Sets the method by which group member lookups are performed. Use caution when changing this option directly. Acceptable values: "default", "rfc2307bis".
MemberOfAttribute string: Specifies the LDAP Query Member Of attribute, which performs reverse membership queries.
Name string: Specifies the name of the LDAP provider.
NameAttribute string: Specifies the LDAP UID attribute, which is used as the login name.
NetgroupBaseDn string: Specifies the distinguished name of the entry where LDAP searches for netgroups are started.
NetgroupFilter string: Specifies the LDAP filter for netgroup objects.
NetgroupMembersAttribute string: Specifies the LDAP Netgroup Members attribute.
NetgroupSearchScope string: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
NetgroupTripleAttribute string: Specifies the LDAP Netgroup Triple attribute.
NormalizeGroups bool: Normalizes group names to lowercase before look up.
NormalizeUsers bool: Normalizes user names to lowercase before look up.
NtPasswordAttribute string: Specifies the LDAP NT Password attribute.
NtlmSupport string: Specifies which NTLM versions to support for users with NTLM-compatible credentials. Acceptable values: "all", "v2only", "none".
OcspServerUris []string: Specifies the OCSP server URIs. Only available for PowerScale 9.5 and above.
ProviderDomain string: Specifies the provider domain.
RequireSecureConnection bool: Determines whether to continue over a non-TLS connection.
RestrictFindable bool: If true, checks the provider for filtered lists of findable and unfindable users and groups.
RestrictListable bool: If true, checks the provider for filtered lists of listable and unlistable users and groups.
SearchScope string: Specifies the default depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
SearchTimeout float64: Specifies the search timeout period in seconds.
ServerUris []string: Specifies the server URIs.
ShadowExpireAttribute string: Sets the attribute name that indicates the absolute date to expire the account.
ShadowFlagAttribute string: Sets the attribute name that indicates the section of the shadow map that is used to store the flag value.
ShadowInactiveAttribute string: Sets the attribute name that indicates the number of days of inactivity that is allowed for the user.
ShadowLastChangeAttribute string: Sets the attribute name that indicates the last change of the shadow information.
ShadowMaxAttribute string: Sets the attribute name that indicates the maximum number of days a password can be valid.
ShadowMinAttribute string: Sets the attribute name that indicates the minimum number of days between shadow changes.
ShadowUserFilter string: Sets LDAP filter for shadow user objects.
ShadowWarningAttribute string: Sets the attribute name that indicates the number of days before the password expires to warn the user.
ShellAttribute string: Specifies the LDAP Shell attribute.
SshPublicKeyAttribute string: Sets the attribute name that indicates the SSH Public Key for the user.
Status string: Specifies the status of the provider.
System bool: If true, indicates that this provider instance was created by OneFS and cannot be removed.
TlsProtocolMin string: Specifies the minimum TLS protocol version.
TlsRevocationCheckLevel string: This setting controls the behavior of the certificate revocation checking algorithm when the LDAP provider is presented with a digital certificate by an LDAP server. Acceptable values: "none", "allowNoData", "allowNoSrc", "strict". Only available for PowerScale 9.5 and above.
UidAttribute string: Specifies the LDAP UID Number attribute.
UnfindableGroups []string: Specifies the groups that cannot be resolved by the provider.
UnfindableUsers []string: Specifies users that cannot be resolved by the provider.
UniqueGroupMembersAttribute string: Sets the LDAP Unique Group Members attribute.
UnlistableGroups []string: Specifies a group that cannot be listed by the provider.
UnlistableUsers []string: Specifies a user that cannot be listed by the provider.
UserBaseDn string: Specifies the distinguished name of the entry at which to start LDAP searches for users.
UserDomain string: Specifies the domain for this provider through which users are qualified.
UserFilter string: Specifies the LDAP filter for user objects.
UserSearchScope string: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
ZoneName string: Specifies the name of the access zone in which this provider was created.

alternateSecurityIdentitiesAttribute String: Specifies the attribute name used when searching for alternate security identities.
authentication Boolean: If true, enables authentication and identity management through the authentication provider.
balanceServers Boolean: If true, connects the provider to a random server.
baseDn String: Specifies the root of the tree in which to search identities.
bindDn String: Specifies the distinguished name for binding to the LDAP server.
bindMechanism String: Specifies which bind mechanism to use when connecting to an LDAP server. The only supported option is the 'simple' value.
bindTimeout Double: Specifies the timeout in seconds when binding to an LDAP server.
certificateAuthorityFile String: Specifies the path to the root certificates file.
checkOnlineInterval Double: Specifies the time in seconds between provider online checks.
cnAttribute String: Specifies the canonical name.
createHomeDirectory Boolean: Automatically create the home directory on the first login.
cryptPasswordAttribute String: Specifies the hashed password value.
emailAttribute String: Specifies the LDAP Email attribute.
enabled Boolean: If true, enables the LDAP provider.
enumerateGroups Boolean: If true, allows the provider to enumerate groups.
enumerateUsers Boolean: If true, allows the provider to enumerate users.
findableGroups List<String>: Specifies the list of groups that can be resolved.
findableUsers List<String>: Specifies the list of users that can be resolved.
gecosAttribute String: Specifies the LDAP GECOS attribute.
gidAttribute String: Specifies the LDAP GID attribute.
groupBaseDn String: Specifies the distinguished name of the entry where LDAP searches for groups are started.
groupDomain String: Specifies the domain for this provider through which groups are qualified.
groupFilter String: Specifies the LDAP filter for group objects.
groupMembersAttribute String: Specifies the LDAP Group Members attribute.
groupSearchScope String: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
groupnet String: Groupnet identifier.
homeDirectoryTemplate String: Specifies the path to the home directory template.
homedirAttribute String: Specifies the LDAP Homedir attribute.
id String: Specifies the ID of the LDAP provider.
ignoreTlsErrors Boolean: If true, continues over secure connections even if identity checks fail.
listableGroups List<String>: Specifies the groups that can be viewed in the provider.
listableUsers List<String>: Specifies the users that can be viewed in the provider.
loginShell String: Specifies the login shell path.
memberLookupMethod String: Sets the method by which group member lookups are performed. Use caution when changing this option directly. Acceptable values: "default", "rfc2307bis".
memberOfAttribute String: Specifies the LDAP Query Member Of attribute, which performs reverse membership queries.
name String: Specifies the name of the LDAP provider.
nameAttribute String: Specifies the LDAP UID attribute, which is used as the login name.
netgroupBaseDn String: Specifies the distinguished name of the entry where LDAP searches for netgroups are started.
netgroupFilter String: Specifies the LDAP filter for netgroup objects.
netgroupMembersAttribute String: Specifies the LDAP Netgroup Members attribute.
netgroupSearchScope String: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
netgroupTripleAttribute String: Specifies the LDAP Netgroup Triple attribute.
normalizeGroups Boolean: Normalizes group names to lowercase before look up.
normalizeUsers Boolean: Normalizes user names to lowercase before look up.
ntPasswordAttribute String: Specifies the LDAP NT Password attribute.
ntlmSupport String: Specifies which NTLM versions to support for users with NTLM-compatible credentials. Acceptable values: "all", "v2only", "none".
ocspServerUris List<String>: Specifies the OCSP server URIs. Only available for PowerScale 9.5 and above.
providerDomain String: Specifies the provider domain.
requireSecureConnection Boolean: Determines whether to continue over a non-TLS connection.
restrictFindable Boolean: If true, checks the provider for filtered lists of findable and unfindable users and groups.
restrictListable Boolean: If true, checks the provider for filtered lists of listable and unlistable users and groups.
searchScope String: Specifies the default depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
searchTimeout Double: Specifies the search timeout period in seconds.
serverUris List<String>: Specifies the server URIs.
shadowExpireAttribute String: Sets the attribute name that indicates the absolute date to expire the account.
shadowFlagAttribute String: Sets the attribute name that indicates the section of the shadow map that is used to store the flag value.
shadowInactiveAttribute String: Sets the attribute name that indicates the number of days of inactivity that is allowed for the user.
shadowLastChangeAttribute String: Sets the attribute name that indicates the last change of the shadow information.
shadowMaxAttribute String: Sets the attribute name that indicates the maximum number of days a password can be valid.
shadowMinAttribute String: Sets the attribute name that indicates the minimum number of days between shadow changes.
shadowUserFilter String: Sets LDAP filter for shadow user objects.
shadowWarningAttribute String: Sets the attribute name that indicates the number of days before the password expires to warn the user.
shellAttribute String: Specifies the LDAP Shell attribute.
sshPublicKeyAttribute String: Sets the attribute name that indicates the SSH Public Key for the user.
status String: Specifies the status of the provider.
system Boolean: If true, indicates that this provider instance was created by OneFS and cannot be removed.
tlsProtocolMin String: Specifies the minimum TLS protocol version.
tlsRevocationCheckLevel String: This setting controls the behavior of the certificate revocation checking algorithm when the LDAP provider is presented with a digital certificate by an LDAP server. Acceptable values: "none", "allowNoData", "allowNoSrc", "strict". Only available for PowerScale 9.5 and above.
uidAttribute String: Specifies the LDAP UID Number attribute.
unfindableGroups List<String>: Specifies the groups that cannot be resolved by the provider.
unfindableUsers List<String>: Specifies users that cannot be resolved by the provider.
uniqueGroupMembersAttribute String: Sets the LDAP Unique Group Members attribute.
unlistableGroups List<String>: Specifies a group that cannot be listed by the provider.
unlistableUsers List<String>: Specifies a user that cannot be listed by the provider.
userBaseDn String: Specifies the distinguished name of the entry at which to start LDAP searches for users.
userDomain String: Specifies the domain for this provider through which users are qualified.
userFilter String: Specifies the LDAP filter for user objects.
userSearchScope String: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
zoneName String: Specifies the name of the access zone in which this provider was created.

alternateSecurityIdentitiesAttribute string: Specifies the attribute name used when searching for alternate security identities.
authentication boolean: If true, enables authentication and identity management through the authentication provider.
balanceServers boolean: If true, connects the provider to a random server.
baseDn string: Specifies the root of the tree in which to search identities.
bindDn string: Specifies the distinguished name for binding to the LDAP server.
bindMechanism string: Specifies which bind mechanism to use when connecting to an LDAP server. The only supported option is the 'simple' value.
bindTimeout number: Specifies the timeout in seconds when binding to an LDAP server.
certificateAuthorityFile string: Specifies the path to the root certificates file.
checkOnlineInterval number: Specifies the time in seconds between provider online checks.
cnAttribute string: Specifies the canonical name.
createHomeDirectory boolean: Automatically create the home directory on the first login.
cryptPasswordAttribute string: Specifies the hashed password value.
emailAttribute string: Specifies the LDAP Email attribute.
enabled boolean: If true, enables the LDAP provider.
enumerateGroups boolean: If true, allows the provider to enumerate groups.
enumerateUsers boolean: If true, allows the provider to enumerate users.
findableGroups string[]: Specifies the list of groups that can be resolved.
findableUsers string[]: Specifies the list of users that can be resolved.
gecosAttribute string: Specifies the LDAP GECOS attribute.
gidAttribute string: Specifies the LDAP GID attribute.
groupBaseDn string: Specifies the distinguished name of the entry where LDAP searches for groups are started.
groupDomain string: Specifies the domain for this provider through which groups are qualified.
groupFilter string: Specifies the LDAP filter for group objects.
groupMembersAttribute string: Specifies the LDAP Group Members attribute.
groupSearchScope string: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
groupnet string: Groupnet identifier.
homeDirectoryTemplate string: Specifies the path to the home directory template.
homedirAttribute string: Specifies the LDAP Homedir attribute.
id string: Specifies the ID of the LDAP provider.
ignoreTlsErrors boolean: If true, continues over secure connections even if identity checks fail.
listableGroups string[]: Specifies the groups that can be viewed in the provider.
listableUsers string[]: Specifies the users that can be viewed in the provider.
loginShell string: Specifies the login shell path.
memberLookupMethod string: Sets the method by which group member lookups are performed. Use caution when changing this option directly. Acceptable values: "default", "rfc2307bis".
memberOfAttribute string: Specifies the LDAP Query Member Of attribute, which performs reverse membership queries.
name string: Specifies the name of the LDAP provider.
nameAttribute string: Specifies the LDAP UID attribute, which is used as the login name.
netgroupBaseDn string: Specifies the distinguished name of the entry where LDAP searches for netgroups are started.
netgroupFilter string: Specifies the LDAP filter for netgroup objects.
netgroupMembersAttribute string: Specifies the LDAP Netgroup Members attribute.
netgroupSearchScope string: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
netgroupTripleAttribute string: Specifies the LDAP Netgroup Triple attribute.
normalizeGroups boolean: Normalizes group names to lowercase before look up.
normalizeUsers boolean: Normalizes user names to lowercase before look up.
ntPasswordAttribute string: Specifies the LDAP NT Password attribute.
ntlmSupport string: Specifies which NTLM versions to support for users with NTLM-compatible credentials. Acceptable values: "all", "v2only", "none".
ocspServerUris string[]: Specifies the OCSP server URIs. Only available for PowerScale 9.5 and above.
providerDomain string: Specifies the provider domain.
requireSecureConnection boolean: Determines whether to continue over a non-TLS connection.
restrictFindable boolean: If true, checks the provider for filtered lists of findable and unfindable users and groups.
restrictListable boolean: If true, checks the provider for filtered lists of listable and unlistable users and groups.
searchScope string: Specifies the default depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
searchTimeout number: Specifies the search timeout period in seconds.
serverUris string[]: Specifies the server URIs.
shadowExpireAttribute string: Sets the attribute name that indicates the absolute date to expire the account.
shadowFlagAttribute string: Sets the attribute name that indicates the section of the shadow map that is used to store the flag value.
shadowInactiveAttribute string: Sets the attribute name that indicates the number of days of inactivity that is allowed for the user.
shadowLastChangeAttribute string: Sets the attribute name that indicates the last change of the shadow information.
shadowMaxAttribute string: Sets the attribute name that indicates the maximum number of days a password can be valid.
shadowMinAttribute string: Sets the attribute name that indicates the minimum number of days between shadow changes.
shadowUserFilter string: Sets LDAP filter for shadow user objects.
shadowWarningAttribute string: Sets the attribute name that indicates the number of days before the password expires to warn the user.
shellAttribute string: Specifies the LDAP Shell attribute.
sshPublicKeyAttribute string: Sets the attribute name that indicates the SSH Public Key for the user.
status string: Specifies the status of the provider.
system boolean: If true, indicates that this provider instance was created by OneFS and cannot be removed.
tlsProtocolMin string: Specifies the minimum TLS protocol version.
tlsRevocationCheckLevel string: This setting controls the behavior of the certificate revocation checking algorithm when the LDAP provider is presented with a digital certificate by an LDAP server. Acceptable values: "none", "allowNoData", "allowNoSrc", "strict". Only available for PowerScale 9.5 and above.
uidAttribute string: Specifies the LDAP UID Number attribute.
unfindableGroups string[]: Specifies the groups that cannot be resolved by the provider.
unfindableUsers string[]: Specifies users that cannot be resolved by the provider.
uniqueGroupMembersAttribute string: Sets the LDAP Unique Group Members attribute.
unlistableGroups string[]: Specifies a group that cannot be listed by the provider.
unlistableUsers string[]: Specifies a user that cannot be listed by the provider.
userBaseDn string: Specifies the distinguished name of the entry at which to start LDAP searches for users.
userDomain string: Specifies the domain for this provider through which users are qualified.
userFilter string: Specifies the LDAP filter for user objects.
userSearchScope string: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
zoneName string: Specifies the name of the access zone in which this provider was created.

alternate_security_identities_attribute str: Specifies the attribute name used when searching for alternate security identities.
authentication bool: If true, enables authentication and identity management through the authentication provider.
balance_servers bool: If true, connects the provider to a random server.
base_dn str: Specifies the root of the tree in which to search identities.
bind_dn str: Specifies the distinguished name for binding to the LDAP server.
bind_mechanism str: Specifies which bind mechanism to use when connecting to an LDAP server. The only supported option is the 'simple' value.
bind_timeout float: Specifies the timeout in seconds when binding to an LDAP server.
certificate_authority_file str: Specifies the path to the root certificates file.
check_online_interval float: Specifies the time in seconds between provider online checks.
cn_attribute str: Specifies the canonical name.
create_home_directory bool: Automatically create the home directory on the first login.
crypt_password_attribute str: Specifies the hashed password value.
email_attribute str: Specifies the LDAP Email attribute.
enabled bool: If true, enables the LDAP provider.
enumerate_groups bool: If true, allows the provider to enumerate groups.
enumerate_users bool: If true, allows the provider to enumerate users.
findable_groups Sequence[str]: Specifies the list of groups that can be resolved.
findable_users Sequence[str]: Specifies the list of users that can be resolved.
gecos_attribute str: Specifies the LDAP GECOS attribute.
gid_attribute str: Specifies the LDAP GID attribute.
group_base_dn str: Specifies the distinguished name of the entry where LDAP searches for groups are started.
group_domain str: Specifies the domain for this provider through which groups are qualified.
group_filter str: Specifies the LDAP filter for group objects.
group_members_attribute str: Specifies the LDAP Group Members attribute.
group_search_scope str: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
groupnet str: Groupnet identifier.
home_directory_template str: Specifies the path to the home directory template.
homedir_attribute str: Specifies the LDAP Homedir attribute.
id str: Specifies the ID of the LDAP provider.
ignore_tls_errors bool: If true, continues over secure connections even if identity checks fail.
listable_groups Sequence[str]: Specifies the groups that can be viewed in the provider.
listable_users Sequence[str]: Specifies the users that can be viewed in the provider.
login_shell str: Specifies the login shell path.
member_lookup_method str: Sets the method by which group member lookups are performed. Use caution when changing this option directly. Acceptable values: "default", "rfc2307bis".
member_of_attribute str: Specifies the LDAP Query Member Of attribute, which performs reverse membership queries.
name str: Specifies the name of the LDAP provider.
name_attribute str: Specifies the LDAP UID attribute, which is used as the login name.
netgroup_base_dn str: Specifies the distinguished name of the entry where LDAP searches for netgroups are started.
netgroup_filter str: Specifies the LDAP filter for netgroup objects.
netgroup_members_attribute str: Specifies the LDAP Netgroup Members attribute.
netgroup_search_scope str: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
netgroup_triple_attribute str: Specifies the LDAP Netgroup Triple attribute.
normalize_groups bool: Normalizes group names to lowercase before look up.
normalize_users bool: Normalizes user names to lowercase before look up.
nt_password_attribute str: Specifies the LDAP NT Password attribute.
ntlm_support str: Specifies which NTLM versions to support for users with NTLM-compatible credentials. Acceptable values: "all", "v2only", "none".
ocsp_server_uris Sequence[str]: Specifies the OCSP server URIs. Only available for PowerScale 9.5 and above.
provider_domain str: Specifies the provider domain.
require_secure_connection bool: Determines whether to continue over a non-TLS connection.
restrict_findable bool: If true, checks the provider for filtered lists of findable and unfindable users and groups.
restrict_listable bool: If true, checks the provider for filtered lists of listable and unlistable users and groups.
search_scope str: Specifies the default depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
search_timeout float: Specifies the search timeout period in seconds.
server_uris Sequence[str]: Specifies the server URIs.
shadow_expire_attribute str: Sets the attribute name that indicates the absolute date to expire the account.
shadow_flag_attribute str: Sets the attribute name that indicates the section of the shadow map that is used to store the flag value.
shadow_inactive_attribute str: Sets the attribute name that indicates the number of days of inactivity that is allowed for the user.
shadow_last_change_attribute str: Sets the attribute name that indicates the last change of the shadow information.
shadow_max_attribute str: Sets the attribute name that indicates the maximum number of days a password can be valid.
shadow_min_attribute str: Sets the attribute name that indicates the minimum number of days between shadow changes.
shadow_user_filter str: Sets LDAP filter for shadow user objects.
shadow_warning_attribute str: Sets the attribute name that indicates the number of days before the password expires to warn the user.
shell_attribute str: Specifies the LDAP Shell attribute.
ssh_public_key_attribute str: Sets the attribute name that indicates the SSH Public Key for the user.
status str: Specifies the status of the provider.
system bool: If true, indicates that this provider instance was created by OneFS and cannot be removed.
tls_protocol_min str: Specifies the minimum TLS protocol version.
tls_revocation_check_level str: This setting controls the behavior of the certificate revocation checking algorithm when the LDAP provider is presented with a digital certificate by an LDAP server. Acceptable values: "none", "allowNoData", "allowNoSrc", "strict". Only available for PowerScale 9.5 and above.
uid_attribute str: Specifies the LDAP UID Number attribute.
unfindable_groups Sequence[str]: Specifies the groups that cannot be resolved by the provider.
unfindable_users Sequence[str]: Specifies users that cannot be resolved by the provider.
unique_group_members_attribute str: Sets the LDAP Unique Group Members attribute.
unlistable_groups Sequence[str]: Specifies a group that cannot be listed by the provider.
unlistable_users Sequence[str]: Specifies a user that cannot be listed by the provider.
user_base_dn str: Specifies the distinguished name of the entry at which to start LDAP searches for users.
user_domain str: Specifies the domain for this provider through which users are qualified.
user_filter str: Specifies the LDAP filter for user objects.
user_search_scope str: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
zone_name str: Specifies the name of the access zone in which this provider was created.

alternateSecurityIdentitiesAttribute String: Specifies the attribute name used when searching for alternate security identities.
authentication Boolean: If true, enables authentication and identity management through the authentication provider.
balanceServers Boolean: If true, connects the provider to a random server.
baseDn String: Specifies the root of the tree in which to search identities.
bindDn String: Specifies the distinguished name for binding to the LDAP server.
bindMechanism String: Specifies which bind mechanism to use when connecting to an LDAP server. The only supported option is the 'simple' value.
bindTimeout Number: Specifies the timeout in seconds when binding to an LDAP server.
certificateAuthorityFile String: Specifies the path to the root certificates file.
checkOnlineInterval Number: Specifies the time in seconds between provider online checks.
cnAttribute String: Specifies the canonical name.
createHomeDirectory Boolean: Automatically create the home directory on the first login.
cryptPasswordAttribute String: Specifies the hashed password value.
emailAttribute String: Specifies the LDAP Email attribute.
enabled Boolean: If true, enables the LDAP provider.
enumerateGroups Boolean: If true, allows the provider to enumerate groups.
enumerateUsers Boolean: If true, allows the provider to enumerate users.
findableGroups List<String>: Specifies the list of groups that can be resolved.
findableUsers List<String>: Specifies the list of users that can be resolved.
gecosAttribute String: Specifies the LDAP GECOS attribute.
gidAttribute String: Specifies the LDAP GID attribute.
groupBaseDn String: Specifies the distinguished name of the entry where LDAP searches for groups are started.
groupDomain String: Specifies the domain for this provider through which groups are qualified.
groupFilter String: Specifies the LDAP filter for group objects.
groupMembersAttribute String: Specifies the LDAP Group Members attribute.
groupSearchScope String: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
groupnet String: Groupnet identifier.
homeDirectoryTemplate String: Specifies the path to the home directory template.
homedirAttribute String: Specifies the LDAP Homedir attribute.
id String: Specifies the ID of the LDAP provider.
ignoreTlsErrors Boolean: If true, continues over secure connections even if identity checks fail.
listableGroups List<String>: Specifies the groups that can be viewed in the provider.
listableUsers List<String>: Specifies the users that can be viewed in the provider.
loginShell String: Specifies the login shell path.
memberLookupMethod String: Sets the method by which group member lookups are performed. Use caution when changing this option directly. Acceptable values: "default", "rfc2307bis".
memberOfAttribute String: Specifies the LDAP Query Member Of attribute, which performs reverse membership queries.
name String: Specifies the name of the LDAP provider.
nameAttribute String: Specifies the LDAP UID attribute, which is used as the login name.
netgroupBaseDn String: Specifies the distinguished name of the entry where LDAP searches for netgroups are started.
netgroupFilter String: Specifies the LDAP filter for netgroup objects.
netgroupMembersAttribute String: Specifies the LDAP Netgroup Members attribute.
netgroupSearchScope String: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
netgroupTripleAttribute String: Specifies the LDAP Netgroup Triple attribute.
normalizeGroups Boolean: Normalizes group names to lowercase before look up.
normalizeUsers Boolean: Normalizes user names to lowercase before look up.
ntPasswordAttribute String: Specifies the LDAP NT Password attribute.
ntlmSupport String: Specifies which NTLM versions to support for users with NTLM-compatible credentials. Acceptable values: "all", "v2only", "none".
ocspServerUris List<String>: Specifies the OCSP server URIs. Only available for PowerScale 9.5 and above.
providerDomain String: Specifies the provider domain.
requireSecureConnection Boolean: Determines whether to continue over a non-TLS connection.
restrictFindable Boolean: If true, checks the provider for filtered lists of findable and unfindable users and groups.
restrictListable Boolean: If true, checks the provider for filtered lists of listable and unlistable users and groups.
searchScope String: Specifies the default depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
searchTimeout Number: Specifies the search timeout period in seconds.
serverUris List<String>: Specifies the server URIs.
shadowExpireAttribute String: Sets the attribute name that indicates the absolute date to expire the account.
shadowFlagAttribute String: Sets the attribute name that indicates the section of the shadow map that is used to store the flag value.
shadowInactiveAttribute String: Sets the attribute name that indicates the number of days of inactivity that is allowed for the user.
shadowLastChangeAttribute String: Sets the attribute name that indicates the last change of the shadow information.
shadowMaxAttribute String: Sets the attribute name that indicates the maximum number of days a password can be valid.
shadowMinAttribute String: Sets the attribute name that indicates the minimum number of days between shadow changes.
shadowUserFilter String: Sets LDAP filter for shadow user objects.
shadowWarningAttribute String: Sets the attribute name that indicates the number of days before the password expires to warn the user.
shellAttribute String: Specifies the LDAP Shell attribute.
sshPublicKeyAttribute String: Sets the attribute name that indicates the SSH Public Key for the user.
status String: Specifies the status of the provider.
system Boolean: If true, indicates that this provider instance was created by OneFS and cannot be removed.
tlsProtocolMin String: Specifies the minimum TLS protocol version.
tlsRevocationCheckLevel String: This setting controls the behavior of the certificate revocation checking algorithm when the LDAP provider is presented with a digital certificate by an LDAP server. Acceptable values: "none", "allowNoData", "allowNoSrc", "strict". Only available for PowerScale 9.5 and above.
uidAttribute String: Specifies the LDAP UID Number attribute.
unfindableGroups List<String>: Specifies the groups that cannot be resolved by the provider.
unfindableUsers List<String>: Specifies users that cannot be resolved by the provider.
uniqueGroupMembersAttribute String: Sets the LDAP Unique Group Members attribute.
unlistableGroups List<String>: Specifies a group that cannot be listed by the provider.
unlistableUsers List<String>: Specifies a user that cannot be listed by the provider.
userBaseDn String: Specifies the distinguished name of the entry at which to start LDAP searches for users.
userDomain String: Specifies the domain for this provider through which users are qualified.
userFilter String: Specifies the LDAP filter for user objects.
userSearchScope String: Specifies the depth from the base DN to perform LDAP searches. Acceptable values: "default", "base", "onelevel", "subtree", "children".
zoneName String: Specifies the name of the access zone in which this provider was created.

Package Details

Repository: powerscale dell/terraform-provider-powerscale
License
Notes: This Pulumi package is based on the powerscale Terraform Provider.

powerscale 1.7.1 published on Wednesday, Apr 30, 2025 by dell

dell/terraform-provider-powerscale

powerscale.getLdapProvider

On this page

On this page

Using getLdapProvider

getLdapProvider Result

Supporting Types

GetLdapProviderFilter

GetLdapProviderLdapProvider

Package Details

On this page

On this page