Account Service

You can perform the following operations under /redfish/v1/AccountService.

Available Methods: Get, Post, Patch, and Delete

Creating a User

You can use the API and payload to create a new account and delete the respective accounts.

URI: /redfish/v1/AccountService/Accounts

Method: POST

Payload:

{

"UserName": "User_Name",

"Password": "User_Password",

"RoleId": "Administrator",

"Enabled": true

}

Note that the allowed values for “RoleId” are “Administrator”, “Operator”, and “ReadOnly”. You can also verify the assigned privileges for different roles (“Administrator”, “Operator", and “ReadOnly”) under /redfish/v1/AccountService/Roles.

Configuring User Lockout

URI: /redfish/v1/AccountService

Method: PATCH

Payload:

{

"AccountLockoutThreshold": 2,

"AccountLockoutDuration": 300,

"AccountLockoutCounterResetAfter": 300

}

Active Directory

URI: /redfish/v1/AccountService

Method: PATCH

Payload:

{

"ActiveDirectory": {"ServiceEnabled": true,

"ServiceAddresses": ["ldap://<IP>:389"],

"RemoteRoleMapping": [{"RemoteGroup": "cn=ipmiswqa,dc=satc,dc=com",

"LocalRole": "Administrator"}]}

}

LDAP

URI: /redfish/v1/AccountService

Method: PATCH

Payload:

{

"LDAP": {"ServiceEnabled": true,

"ServiceAddresses": ["ldap://<IP>:389"],

"Authentication": {"Username": "cn=Manager, dc=satc, dc=com", "Password": "secret"},

"RemoteRoleMapping": [{"RemoteUser": "tester001", "LocalRole": "Administrator"}],

"LDAPService": {"SearchSettings": {"BaseDistinguishedNames":["dc=satc, dc=com"], "UsernameAttribute": "cn"}}

}

}