| <?xml version="1.0" encoding="UTF-8"?> |
| <!----> |
| <!--################################################################################ --> |
| <!--# Redfish Schema: AccountService v1.15.0 --> |
| <!--# --> |
| <!--# For a detailed change log, see the README file contained in the DSP8010 bundle, --> |
| <!--# available at http://www.dmtf.org/standards/redfish --> |
| <!--# Copyright 2014-2023 DMTF. --> |
| <!--# For the full DMTF copyright policy, see http://www.dmtf.org/about/policies/copyright --> |
| <!--################################################################################ --> |
| <!----> |
| <edmx:Edmx xmlns:edmx="http://docs.oasis-open.org/odata/ns/edmx" Version="4.0"> |
| |
| <edmx:Reference Uri="http://docs.oasis-open.org/odata/odata/v4.0/errata03/csd01/complete/vocabularies/Org.OData.Core.V1.xml"> |
| <edmx:Include Namespace="Org.OData.Core.V1" Alias="OData"/> |
| </edmx:Reference> |
| <edmx:Reference Uri="http://docs.oasis-open.org/odata/odata/v4.0/errata03/csd01/complete/vocabularies/Org.OData.Measures.V1.xml"> |
| <edmx:Include Namespace="Org.OData.Measures.V1" Alias="Measures"/> |
| </edmx:Reference> |
| <edmx:Reference Uri="http://docs.oasis-open.org/odata/odata/v4.0/errata03/csd01/complete/vocabularies/Org.OData.Capabilities.V1.xml"> |
| <edmx:Include Namespace="Org.OData.Capabilities.V1" Alias="Capabilities"/> |
| </edmx:Reference> |
| <edmx:Reference Uri="http://redfish.dmtf.org/schemas/v1/RedfishExtensions_v1.xml"> |
| <edmx:Include Namespace="Validation.v1_0_0" Alias="Validation"/> |
| <edmx:Include Namespace="RedfishExtensions.v1_0_0" Alias="Redfish"/> |
| </edmx:Reference> |
| <edmx:Reference Uri="http://redfish.dmtf.org/schemas/v1/Resource_v1.xml"> |
| <edmx:Include Namespace="Resource"/> |
| <edmx:Include Namespace="Resource.v1_0_0"/> |
| </edmx:Reference> |
| <edmx:Reference Uri="http://redfish.dmtf.org/schemas/v1/ManagerAccountCollection_v1.xml"> |
| <edmx:Include Namespace="ManagerAccountCollection"/> |
| </edmx:Reference> |
| <edmx:Reference Uri="http://redfish.dmtf.org/schemas/v1/RoleCollection_v1.xml"> |
| <edmx:Include Namespace="RoleCollection"/> |
| </edmx:Reference> |
| <edmx:Reference Uri="http://redfish.dmtf.org/schemas/v1/PrivilegeRegistry_v1.xml"> |
| <edmx:Include Namespace="PrivilegeRegistry"/> |
| </edmx:Reference> |
| <edmx:Reference Uri="http://redfish.dmtf.org/schemas/v1/ExternalAccountProviderCollection_v1.xml"> |
| <edmx:Include Namespace="ExternalAccountProviderCollection"/> |
| </edmx:Reference> |
| <edmx:Reference Uri="http://redfish.dmtf.org/schemas/v1/CertificateCollection_v1.xml"> |
| <edmx:Include Namespace="CertificateCollection"/> |
| </edmx:Reference> |
| <edmx:Reference Uri="http://redfish.dmtf.org/schemas/v1/Privileges_v1.xml"> |
| <edmx:Include Namespace="Privileges"/> |
| </edmx:Reference> |
| <edmx:Reference Uri="http://redfish.dmtf.org/schemas/v1/ManagerAccount_v1.xml"> |
| <edmx:Include Namespace="ManagerAccount"/> |
| </edmx:Reference> |
| <edmx:Reference Uri="http://redfish.dmtf.org/schemas/v1/OutboundConnectionCollection_v1.xml"> |
| <edmx:Include Namespace="OutboundConnectionCollection"/> |
| </edmx:Reference> |
| |
| <edmx:DataServices> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| |
| <EntityType Name="AccountService" BaseType="Resource.v1_0_0.Resource" Abstract="true"> |
| <Annotation Term="OData.Description" String="The AccountService schema defines an account service. The properties are common to, and enable management of, all user accounts. The properties include the password requirements and control features, such as account lockout. Properties and actions in this service specify general behavior that should be followed for typical accounts, however implementations might override these behaviors for special accounts or situations to avoid denial of service or other deadlock situations."/> |
| <Annotation Term="OData.LongDescription" String="This resource shall represent an account service for a Redfish implementation. The properties are common to, and enable management of, all user accounts. The properties include the password requirements and control features, such as account lockout. Properties and actions in this service specify general behavior that should be followed for typical accounts, however implementations may override these behaviors for special accounts or situations to avoid denial of service or other deadlock situations."/> |
| <Annotation Term="Capabilities.InsertRestrictions"> |
| <Record> |
| <PropertyValue Property="Insertable" Bool="false"/> |
| </Record> |
| </Annotation> |
| <Annotation Term="Capabilities.UpdateRestrictions"> |
| <Record> |
| <PropertyValue Property="Updatable" Bool="true"/> |
| <Annotation Term="OData.Description" String="Some properties, such as thresholds and durations, can be updated for the account service."/> |
| </Record> |
| </Annotation> |
| <Annotation Term="Capabilities.DeleteRestrictions"> |
| <Record> |
| <PropertyValue Property="Deletable" Bool="false"/> |
| </Record> |
| </Annotation> |
| <Annotation Term="Redfish.Uris"> |
| <Collection> |
| <String>/redfish/v1/AccountService</String> |
| <String>/redfish/v1/Managers/{ManagerId}/RemoteAccountService</String> |
| </Collection> |
| </Annotation> |
| </EntityType> |
| |
| <ComplexType Name="MFABypass" Abstract="true"> |
| <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| <Annotation Term="OData.Description" String="Multi-factor authentication bypass settings."/> |
| <Annotation Term="OData.LongDescription" String="This type shall contain multi-factor authentication bypass settings."/> |
| </ComplexType> |
| |
| <EnumType Name="MFABypassType"> |
| <Annotation Term="Redfish.Revisions"> |
| <Collection> |
| <Record> |
| <PropertyValue Property="Kind" EnumMember="Redfish.RevisionKind/Added"/> |
| <PropertyValue Property="Version" String="v1_12_0"/> |
| </Record> |
| </Collection> |
| </Annotation> |
| <Member Name="All"> |
| <Annotation Term="OData.Description" String="Bypass all multi-factor authentication types."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate an account or role mapping can bypass all multi-factor authentication types including OEM-defined types."/> |
| </Member> |
| <Member Name="SecurID"> |
| <Annotation Term="OData.Description" String="Bypass RSA SecurID."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate an account or role mapping can bypass RSA SecurID."/> |
| </Member> |
| <Member Name="GoogleAuthenticator"> |
| <Annotation Term="OData.Description" String="Bypass Google Authenticator."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate an account or role mapping can bypass Google Authenticator."/> |
| </Member> |
| <Member Name="MicrosoftAuthenticator"> |
| <Annotation Term="OData.Description" String="Bypass Microsoft Authenticator."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate an account or role mapping can bypass Microsoft Authenticator."/> |
| </Member> |
| <Member Name="ClientCertificate"> |
| <Annotation Term="OData.Description" String="Bypass client certificate authentication."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate an account or role mapping can bypass client certificate authentication."/> |
| </Member> |
| <Member Name="OneTimePasscode"> |
| <Annotation Term="OData.Description" String="Bypass one-time passcode authentication."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate an account or role mapping can bypass one-time passcode authentication."/> |
| <Annotation Term="Redfish.Revisions"> |
| <Collection> |
| <Record> |
| <PropertyValue Property="Kind" EnumMember="Redfish.RevisionKind/Added"/> |
| <PropertyValue Property="Version" String="v1_14_0"/> |
| </Record> |
| </Collection> |
| </Annotation> |
| </Member> |
| <Member Name="OEM"> |
| <Annotation Term="OData.Description" String="Bypass OEM-defined multi-factor authentication."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate an account or role mapping can bypass OEM-defined multi-factor authentication."/> |
| </Member> |
| </EnumType> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_0_0"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="Redfish.Release" String="1.0"/> |
| |
| <EntityType Name="AccountService" BaseType="AccountService.AccountService"> |
| <Property Name="Status" Type="Resource.Status" Nullable="false"> |
| <Annotation Term="OData.Description" String="The status and health of the resource and its subordinate or dependent resources."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain any status or health properties of the resource."/> |
| </Property> |
| <Property Name="ServiceEnabled" Type="Edm.Boolean"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="An indication of whether the account service is enabled. If `true`, it is enabled. If `false`, it is disabled and users cannot be created, deleted, or modified, and new sessions cannot be started. However, established sessions might still continue to run. Any service, such as the session service, that attempts to access the disabled account service fails. However, this does not affect HTTP Basic Authentication connections."/> |
| <Annotation Term="OData.LongDescription" String="This property shall indicate whether the account service is enabled. If `true`, it is enabled. If `false`, it is disabled and users cannot be created, deleted, or modified, and new sessions cannot be started. However, established sessions may still continue to run. Any service, such as the session service, that attempts to access the disabled account service fails. However, this does not affect HTTP Basic Authentication connections."/> |
| </Property> |
| <Property Name="AuthFailureLoggingThreshold" Type="Edm.Int64" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The number of authorization failures per account that are allowed before the failed attempt is logged to the manager log."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the threshold for when an authorization failure is logged. Logging shall occur after every `n` occurrences of an authorization failure on the same account, where `n` represents the value of this property. If the value is `0`, logging of authorization failures shall be disabled."/> |
| <Annotation Term="Validation.Minimum" Int="0"/> |
| </Property> |
| <Property Name="MinPasswordLength" Type="Edm.Int64" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The minimum password length for this account service."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the minimum password length that the implementation allows for this account service. This property does not apply to accounts from external account providers."/> |
| <Annotation Term="Validation.Minimum" Int="0"/> |
| </Property> |
| <Property Name="MaxPasswordLength" Type="Edm.Int64" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The maximum password length for this account service."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the maximum password length that the implementation allows for this account service. This property does not apply to accounts from external account providers."/> |
| <Annotation Term="Validation.Minimum" Int="0"/> |
| </Property> |
| <Property Name="AccountLockoutThreshold" Type="Edm.Int64" Nullable="true"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The number of allowed failed login attempts before a user account is locked for a specified duration. If `0`, the account is never locked."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the threshold of failed login attempts before a user account is locked. If `0`, the account shall never be locked."/> |
| <Annotation Term="Validation.Minimum" Int="0"/> |
| </Property> |
| <Property Name="AccountLockoutDuration" Type="Edm.Int64" Nullable="true"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The period of time, in seconds, that an account is locked after the number of failed login attempts reaches the account lockout threshold, within the period between the last failed login attempt and the reset of the lockout threshold counter. If this value is `0`, no lockout will occur. If the AccountLockoutCounterResetEnabled value is `false`, this property is ignored."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the period of time, in seconds, that an account is locked after the number of failed login attempts reaches the AccountLockoutThreshold value, within the AccountLockoutCounterResetAfter window of time. The value shall be greater than or equal to the AccountLockoutCounterResetAfter value. If this value is `0`, no lockout shall occur. If AccountLockoutCounterResetEnabled value is `false`, this property shall be ignored."/> |
| <Annotation Term="Validation.Minimum" Int="0"/> |
| <Annotation Term="Measures.Unit" String="s"/> |
| </Property> |
| <Property Name="AccountLockoutCounterResetAfter" Type="Edm.Int64" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The period of time, in seconds, between the last failed login attempt and the reset of the lockout threshold counter. This value must be less than or equal to the AccountLockoutDuration value. A reset sets the counter to `0`."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the period of time, in seconds, from the last failed login attempt when the AccountLockoutThreshold counter, which counts the number of failed login attempts, is reset to `0`. Then, AccountLockoutThreshold failures are required before the account is locked. This value shall be less than or equal to the AccountLockoutDuration value. The threshold counter also resets to `0` after each successful login. If the AccountLockoutCounterResetEnabled value is `false`, this property shall be ignored."/> |
| <Annotation Term="Validation.Minimum" Int="0"/> |
| <Annotation Term="Measures.Unit" String="s"/> |
| </Property> |
| <NavigationProperty Name="Accounts" Type="ManagerAccountCollection.ManagerAccountCollection" ContainsTarget="true" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="The collection of manager accounts."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain a link to a resource collection of type ManagerAccountCollection."/> |
| <Annotation Term="OData.AutoExpandReferences"/> |
| </NavigationProperty> |
| <NavigationProperty Name="Roles" Type="RoleCollection.RoleCollection" ContainsTarget="true" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="The collection of Redfish roles."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain a link to a resource collection of type RoleCollection."/> |
| <Annotation Term="OData.AutoExpandReferences"/> |
| </NavigationProperty> |
| </EntityType> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_0_2"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to show that annotations in previous namespaces were updated."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_0_0.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_0_3"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to add explicit permissions annotations to all properties for clarity."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_0_2.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_0_4"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to fix supported types."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_0_3.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_0_5"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to fix supported types, which are the ServiceEnabled fixed and long descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_0_4.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_0_6"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to force the regeneration of JSON Schema so that OData properties are marked as required, and integer properties are marked as integer rather than number."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_0_5.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_0_7"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to force the regeneration of JSON Schema so that URI properties use the uri-reference format."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_0_6.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_0_8"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to update descriptions that this schema defines."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_0_7.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_0_9"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the description for AuthFailureLoggingThreshold."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_0_8.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_0_10"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for MinPasswordLength and MaxPasswordLength to state they do not apply to accounts from external account providers. It was also created to make MinPasswordLength and MaxPasswordLength writable. The description for AuthFailureLoggingThreshold was also updated to clarify that the threshold applies to authentication failures per account."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_0_9.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_0_11"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to specify 64-bit integers in OpenAPI."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_0_10.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_0_12"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to correct various descriptions to use proper normative terminology."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_0_11.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_0_13"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify that services are allowed to protect accounts to avoid deadlock conditions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_0_12.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_0_14"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to remove normative language from non-normative descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_0_13.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_1_0"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="Redfish.Release" String="2016.3"/> |
| |
| <EntityType Name="AccountService" BaseType="AccountService.v1_0_3.AccountService"> |
| <NavigationProperty Name="PrivilegeMap" Type="PrivilegeRegistry.PrivilegeRegistry" ContainsTarget="true" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="The link to the mapping of the privileges required to complete a requested operation on a URI associated with this service."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain a link to a resource of type PrivilegeMapping that contains the privileges that are required for a user context to complete a requested operation on a URI associated with this service."/> |
| <Annotation Term="OData.AutoExpandReferences"/> |
| </NavigationProperty> |
| </EntityType> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_1_1"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to fix supported types."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_1_0.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_1_2"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to fix the description for ServiceEnabled."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_1_1.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_1_3"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to force the regeneration of JSON Schema so that OData properties are marked as required, and integer properties are marked as integer rather than number."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_1_2.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_1_4"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to force the regeneration of JSON Schema so that URI properties use the uri-reference format."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_1_3.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_1_5"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to update descriptions that this schema defines."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_1_4.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_1_6"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the description for AuthFailureLoggingThreshold."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_1_5.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_1_7"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for MinPasswordLength and MaxPasswordLength to state they do not apply to accounts from external account providers. It was also created to make MinPasswordLength and MaxPasswordLength writable. The description for AuthFailureLoggingThreshold was also updated to clarify that the threshold applies to authentication failures per account."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_1_6.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_1_8"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to specify 64-bit integers in OpenAPI."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_1_7.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_1_9"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to correct various descriptions to use proper normative terminology."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_1_8.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_1_10"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify that services are allowed to protect accounts to avoid deadlock conditions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_1_9.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_1_11"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to remove normative language from non-normative descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_1_10.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_2_0"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="Redfish.Release" String="2017.1"/> |
| |
| <EntityType Name="AccountService" BaseType="AccountService.v1_1_1.AccountService"> |
| <Property Name="Actions" Type="AccountService.v1_2_0.Actions" Nullable="false"> |
| <Annotation Term="OData.Description" String="The available actions for this resource."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the available actions for this resource."/> |
| </Property> |
| </EntityType> |
| |
| <ComplexType Name="Actions"> |
| <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| <Annotation Term="OData.Description" String="The available actions for this resource."/> |
| <Annotation Term="OData.LongDescription" String="This type shall contain the available actions for this resource."/> |
| <Property Name="Oem" Type="AccountService.v1_2_0.OemActions" Nullable="false"> |
| <Annotation Term="OData.Description" String="The available OEM-specific actions for this resource."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the available OEM-specific actions for this resource."/> |
| </Property> |
| </ComplexType> |
| |
| <ComplexType Name="OemActions"> |
| <Annotation Term="OData.AdditionalProperties" Bool="true"/> |
| <Annotation Term="OData.Description" String="The available OEM-specific actions for this resource."/> |
| <Annotation Term="OData.LongDescription" String="This type shall contain the available OEM-specific actions for this resource."/> |
| </ComplexType> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_2_1"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to fix the description for ServiceEnabled."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_2_0.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_2_2"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to update the descriptions in this schema."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_2_1.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_2_3"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to force the regeneration of JSON Schema so that OData properties are marked as required, and integer properties are marked as integer rather than number."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_2_2.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_2_4"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to force the regeneration of JSON Schema so that URI properties use the uri-reference format."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_2_3.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_2_5"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to update descriptions that this schema defines."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_2_4.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_2_6"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the description for AuthFailureLoggingThreshold."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_2_5.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_2_7"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for MinPasswordLength and MaxPasswordLength to state they do not apply to accounts from external account providers. It was also created to make MinPasswordLength and MaxPasswordLength writable. The description for AuthFailureLoggingThreshold was also updated to clarify that the threshold applies to authentication failures per account."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_2_6.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_2_8"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to specify 64-bit integers in OpenAPI."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_2_7.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_2_9"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to correct various descriptions to use proper normative terminology."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_2_8.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_2_10"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify that services are allowed to protect accounts to avoid deadlock conditions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_2_9.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_2_11"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to remove normative language from non-normative descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_2_10.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_3_0"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="Redfish.Release" String="2018.1"/> |
| |
| <EntityType Name="AccountService" BaseType="AccountService.v1_2_2.AccountService"> |
| <Property Name="LocalAccountAuth" Type="AccountService.v1_3_0.LocalAccountAuth" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="An indication of how the service uses the accounts collection within this account service as part of authentication. The enumerated values describe the details for each mode."/> |
| <Annotation Term="OData.LongDescription" String="This property shall govern how the service uses the manager accounts resource collection within this account service as part of authentication. The enumerated values describe the details for each mode."/> |
| </Property> |
| <Property Name="LDAP" Type="AccountService.v1_3_0.ExternalAccountProvider" Nullable="false"> |
| <Annotation Term="OData.Description" String="The first LDAP external account provider that this account service supports."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the first LDAP external account provider that this account service supports. If the account service supports one or more LDAP services as an external account provider, this entity shall be populated by default. This entity shall not be present in the additional external account providers resource collection."/> |
| </Property> |
| <Property Name="ActiveDirectory" Type="AccountService.v1_3_0.ExternalAccountProvider" Nullable="false"> |
| <Annotation Term="OData.Description" String="The first Active Directory external account provider that this account service supports."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the first Active Directory external account provider that this account service supports. If the account service supports one or more Active Directory services as an external account provider, this entity shall be populated by default. This entity shall not be present in the additional external account providers resource collection."/> |
| </Property> |
| <NavigationProperty Name="AdditionalExternalAccountProviders" Type="ExternalAccountProviderCollection.ExternalAccountProviderCollection" ContainsTarget="true" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="The additional external account providers that this account service uses."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain a link to a resource collection of type ExternalAccountProviderCollection that represents the additional external account providers that this account service uses."/> |
| <Annotation Term="Redfish.URISegment" String="ExternalAccountProviders"/> |
| </NavigationProperty> |
| </EntityType> |
| |
| <EnumType Name="LocalAccountAuth"> |
| <Member Name="Enabled"> |
| <Annotation Term="OData.Description" String="The service authenticates users based on the account service-defined accounts collection."/> |
| <Annotation Term="OData.LongDescription" String="The service shall authenticate users based on the account service-defined manager accounts resource collection."/> |
| </Member> |
| <Member Name="Disabled"> |
| <Annotation Term="OData.Description" String="The service never authenticates users based on the account service-defined accounts collection."/> |
| <Annotation Term="OData.LongDescription" String="The service shall never authenticate users based on the account service-defined manager accounts resource collection."/> |
| </Member> |
| <Member Name="Fallback"> |
| <Annotation Term="OData.Description" String="The service authenticates users based on the account service-defined accounts collection only if any external account providers are currently unreachable."/> |
| <Annotation Term="OData.LongDescription" String="The service shall authenticate users based on the account service-defined manager accounts resource collection only if any external account providers are currently unreachable."/> |
| </Member> |
| <Member Name="LocalFirst"> |
| <Annotation Term="OData.Description" String="The service first authenticates users based on the account service-defined accounts collection. If authentication fails, the service authenticates by using external account providers."/> |
| <Annotation Term="OData.LongDescription" String="The service shall first authenticate users based on the account service-defined manager accounts resource collection. If authentication fails, the service shall authenticate by using external account providers."/> |
| <Annotation Term="Redfish.Revisions"> |
| <Collection> |
| <Record> |
| <PropertyValue Property="Kind" EnumMember="Redfish.RevisionKind/Added"/> |
| <PropertyValue Property="Version" String="v1_6_0"/> |
| </Record> |
| </Collection> |
| </Annotation> |
| </Member> |
| </EnumType> |
| |
| <ComplexType Name="ExternalAccountProvider"> |
| <Annotation Term="OData.Description" String="The external account provider services that can provide accounts for this manager to use for authentication."/> |
| <Annotation Term="OData.LongDescription" String="This type shall contain properties that represent external account provider services that can provide accounts for this manager to use for authentication."/> |
| <Property Name="AccountProviderType" Type="AccountService.v1_3_0.AccountProviderTypes"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="The type of external account provider to which this service connects."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the type of external account provider to which this service connects."/> |
| <Annotation Term="Redfish.Revisions"> |
| <Collection> |
| <Record> |
| <PropertyValue Property="Kind" EnumMember="Redfish.RevisionKind/Deprecated"/> |
| <PropertyValue Property="Version" String="v1_5_0"/> |
| <PropertyValue Property="Description" String="This property is deprecated because the account provider type is known when used in the LDAP and ActiveDirectory objects."/> |
| </Record> |
| </Collection> |
| </Annotation> |
| </Property> |
| <Property Name="ServiceEnabled" Type="Edm.Boolean"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="An indication of whether this service is enabled."/> |
| <Annotation Term="OData.LongDescription" String="This property shall indicate whether this service is enabled."/> |
| </Property> |
| <Property Name="ServiceAddresses" Type="Collection(Edm.String)"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The addresses of the user account providers to which this external account provider links. The format of this field depends on the type of external account provider."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the addresses of the account providers to which this external account provider links. The format of this field depends on the type of external account provider. Each item in the array shall contain a single address. Services can define their own behavior for managing multiple addresses."/> |
| </Property> |
| <Property Name="Authentication" Type="AccountService.v1_3_0.Authentication" Nullable="false"> |
| <Annotation Term="OData.Description" String="The authentication information for the external account provider."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the authentication information for the external account provider."/> |
| </Property> |
| <Property Name="LDAPService" Type="AccountService.v1_3_0.LDAPService" Nullable="false"> |
| <Annotation Term="OData.Description" String="The additional mapping information needed to parse a generic LDAP service."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain any additional mapping information needed to parse a generic LDAP service. This property should only be present inside the LDAP property."/> |
| </Property> |
| <Property Name="RemoteRoleMapping" Type="Collection(AccountService.v1_3_0.RoleMapping)"> |
| <Annotation Term="OData.Description" String="The mapping rules to convert the external account providers account information to the local Redfish role."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain a set of the mapping rules that are used to convert the external account providers account information to the local Redfish role."/> |
| </Property> |
| </ComplexType> |
| |
| <EnumType Name="AccountProviderTypes"> |
| <Member Name="RedfishService"> |
| <Annotation Term="OData.Description" String="An external Redfish service."/> |
| <Annotation Term="OData.LongDescription" String="The external account provider shall be a DMTF Redfish Specification-conformant service. The ServiceAddresses property shall contain URIs to AccountService resources that correspond to Redfish services. For example, `https://192.168.1.50/redfish/v1/AccountService`."/> |
| </Member> |
| <Member Name="ActiveDirectoryService"> |
| <Annotation Term="OData.Description" String="An external Active Directory service."/> |
| <Annotation Term="OData.LongDescription" String="The external account provider shall be a Microsoft Active Directory Technical Specification-conformant service. The ServiceAddresses property shall contain fully qualified domain names (FQDN) or NetBIOS names that link to the domain servers for the Active Directory service."/> |
| </Member> |
| <Member Name="LDAPService"> |
| <Annotation Term="OData.Description" String="A generic external LDAP service."/> |
| <Annotation Term="OData.LongDescription" String="The external account provider shall be an RFC4511-conformant service. The ServiceAddresses property shall contain RFC3986-defined URIs in the format `scheme://host:port`, where `scheme://` and `:port` are optional, that link to the LDAP servers for the service. If the scheme is not specified, services shall assume it is `ldaps://`. If the port is not specified, services shall assume it is `636`. For example, `ldaps://contoso.com:636` or `contoso.com`."/> |
| </Member> |
| <Member Name="OEM"> |
| <Annotation Term="OData.Description" String="An OEM-specific external authentication or directory service."/> |
| </Member> |
| <Member Name="TACACSplus"> |
| <Annotation Term="OData.Description" String="An external TACACS+ service."/> |
| <Annotation Term="OData.LongDescription" String="The external account provider shall be an RFC8907-conformant service. The ServiceAddresses property shall contain RFC3986-defined URIs in the format `host:port` that correspond to the TACACS+ services."/> |
| <Annotation Term="Redfish.Revisions"> |
| <Collection> |
| <Record> |
| <PropertyValue Property="Kind" EnumMember="Redfish.RevisionKind/Added"/> |
| <PropertyValue Property="Version" String="v1_8_0"/> |
| </Record> |
| </Collection> |
| </Annotation> |
| </Member> |
| <Member Name="OAuth2"> |
| <Annotation Term="OData.Description" String="An external OAuth 2.0 service."/> |
| <Annotation Term="OData.LongDescription" String="The external account provider shall be an RFC6749-conformant service. The ServiceAddresses property shall contain RFC3986-defined URIs that correspond to the RFC8414-defined metadata for the OAuth 2.0 service. For example, `https://contoso.org/.well-known/oauth-authorization-server`."/> |
| <Annotation Term="Redfish.Revisions"> |
| <Collection> |
| <Record> |
| <PropertyValue Property="Kind" EnumMember="Redfish.RevisionKind/Added"/> |
| <PropertyValue Property="Version" String="v1_10_0"/> |
| </Record> |
| </Collection> |
| </Annotation> |
| </Member> |
| </EnumType> |
| |
| <ComplexType Name="Authentication"> |
| <Annotation Term="OData.Description" String="The information required to authenticate to the external service."/> |
| <Annotation Term="OData.LongDescription" String="This type shall contain the information required to authenticate to the external service."/> |
| <Property Name="AuthenticationType" Type="AccountService.v1_3_0.AuthenticationTypes"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The type of authentication used to connect to the external account provider."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the type of authentication used to connect to the external account provider."/> |
| </Property> |
| <Property Name="Username" Type="Edm.String" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The user name for the service."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the user name for this service."/> |
| </Property> |
| <Property Name="Password" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Write"/> |
| <Annotation Term="OData.Description" String="The password for this service. A PATCH or PUT request writes the password. This property is `null` in responses."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the password for this service. A PATCH or PUT operation writes the password. The value shall be `null` in responses."/> |
| </Property> |
| <Property Name="Token" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Write"/> |
| <Annotation Term="OData.Description" String="The token for this service. A PATCH or PUT operation writes the token. This property is `null` in responses."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the token for this service. A PATCH or PUT operation writes the token. The value shall be `null` in responses."/> |
| </Property> |
| <Property Name="KerberosKeytab" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Write"/> |
| <Annotation Term="OData.Description" String="The Base64-encoded version of the Kerberos keytab for this service. A PATCH or PUT operation writes the keytab. This property is `null` in responses."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain a Base64-encoded version of the Kerberos keytab for this service. A PATCH or PUT operation writes the keytab. The value shall be `null` in responses."/> |
| </Property> |
| <Property Name="Oem" Type="Resource.Oem" Nullable="false"> |
| <Annotation Term="OData.Description" String="The OEM extension property."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the OEM extensions. All values for properties contained in this object shall conform to the Redfish Specification-described requirements."/> |
| </Property> |
| </ComplexType> |
| |
| <EnumType Name="AuthenticationTypes"> |
| <Member Name="Token"> |
| <Annotation Term="OData.Description" String="An opaque authentication token."/> |
| </Member> |
| <Member Name="KerberosKeytab"> |
| <Annotation Term="OData.Description" String="A Kerberos keytab."/> |
| </Member> |
| <Member Name="UsernameAndPassword"> |
| <Annotation Term="OData.Description" String="A user name and password combination."/> |
| </Member> |
| <Member Name="OEM"> |
| <Annotation Term="OData.Description" String="An OEM-specific authentication mechanism."/> |
| </Member> |
| </EnumType> |
| |
| <ComplexType Name="LDAPService"> |
| <Annotation Term="OData.Description" String="The settings required to parse a generic LDAP service."/> |
| <Annotation Term="OData.LongDescription" String="This type shall contain all required settings to parse a generic LDAP service."/> |
| <Property Name="SearchSettings" Type="AccountService.v1_3_0.LDAPSearchSettings" Nullable="false"> |
| <Annotation Term="OData.Description" String="The required settings to search an external LDAP service."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the required settings to search an external LDAP service."/> |
| </Property> |
| <Property Name="Oem" Type="Resource.Oem" Nullable="false"> |
| <Annotation Term="OData.Description" String="The OEM extension property."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the OEM extensions. All values for properties contained in this object shall conform to the Redfish Specification-described requirements."/> |
| </Property> |
| </ComplexType> |
| |
| <ComplexType Name="LDAPSearchSettings"> |
| <Annotation Term="OData.Description" String="The settings to search a generic LDAP service."/> |
| <Annotation Term="OData.LongDescription" String="This type shall contain all required settings to search a generic LDAP service."/> |
| <Property Name="BaseDistinguishedNames" Type="Collection(Edm.String)"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The base distinguished names to use to search an external LDAP service."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain an array of base distinguished names to use to search an external LDAP service."/> |
| </Property> |
| <Property Name="UsernameAttribute" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The attribute name that contains the LDAP user name entry."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the attribute name that contains the LDAP user name."/> |
| </Property> |
| <Property Name="GroupNameAttribute" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The attribute name that contains the LDAP group name entry."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the attribute name that contains the LDAP group name."/> |
| </Property> |
| <Property Name="GroupsAttribute" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The attribute name that contains the groups for a user on the LDAP user entry."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the attribute name that contains the groups for an LDAP user entry."/> |
| </Property> |
| </ComplexType> |
| |
| <ComplexType Name="RoleMapping"> |
| <Annotation Term="OData.Description" String="The mapping rules that are used to convert the external account providers account information to the local Redfish role."/> |
| <Annotation Term="OData.LongDescription" String="This type shall contain mapping rules that are used to convert the external account providers account information to the local Redfish role."/> |
| <Property Name="RemoteGroup" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The name of the remote group, or the remote role in the case of a Redfish service, that maps to the local Redfish role to which this entity links."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the name of the remote group, or the remote role in the case of a Redfish service, that maps to the local Redfish role to which this entity links."/> |
| </Property> |
| <Property Name="RemoteUser" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The name of the remote user that maps to the local Redfish role to which this entity links."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the name of the remote user that maps to the local Redfish role to which this entity links."/> |
| </Property> |
| <Property Name="LocalRole" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The name of the local Redfish role to which to map the remote user or group."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the RoleId property value within a role resource on this Redfish service to which to map the remote user or group."/> |
| </Property> |
| <Property Name="Oem" Type="Resource.Oem" Nullable="false"> |
| <Annotation Term="OData.Description" String="The OEM extension property."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the OEM extensions. All values for properties contained in this object shall conform to the Redfish Specification-described requirements."/> |
| </Property> |
| </ComplexType> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_3_1"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to force the regeneration of JSON Schema so that OData properties are marked as required, and integer properties are marked as integer rather than number."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_3_0.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_3_2"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to force the regeneration of JSON Schema so that URI properties use the uri-reference format. It also clarifies property descriptions in LDAPSearchSettings and adds a missing term to several properties to disallow them from being `null`."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_3_1.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_3_3"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to update the description of the Password, Token, and KerberosKeytab properties. It was also created to clarify the usage of the LDAPService property."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_3_2.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_3_4"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the description for AuthFailureLoggingThreshold."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_3_3.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_3_5"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for MinPasswordLength and MaxPasswordLength to state they do not apply to accounts from external account providers. It was also created to make MinPasswordLength and MaxPasswordLength writable. The description for AuthFailureLoggingThreshold was also updated to clarify that the threshold applies to authentication failures per account."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_3_4.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_3_6"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to fix typos in descriptions and long descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_3_5.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_3_7"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to specify 64-bit integers in OpenAPI."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_3_6.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_3_8"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to correct various descriptions to use proper normative terminology."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_3_7.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_3_9"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify that services are allowed to protect accounts to avoid deadlock conditions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_3_8.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_3_10"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to mark properties with values containing sensitive data as write-only."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_3_9.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_3_11"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to add the URI segment annotation to AdditionalExternalAccountProviders."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_3_10.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_3_12"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for the values of AccountProviderType. It was also created to expand the `LDAPService` value for AccountProviderType to allow for a scheme and port to be specified."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_3_11.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_3_13"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to remove normative language from non-normative descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_3_12.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_4_0"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="Redfish.Release" String="2018.3"/> |
| |
| <EntityType Name="AccountService" BaseType="AccountService.v1_3_1.AccountService"/> |
| |
| <ComplexType Name="ExternalAccountProvider" BaseType="AccountService.v1_3_0.ExternalAccountProvider"> |
| <NavigationProperty Name="Certificates" Type="CertificateCollection.CertificateCollection" ContainsTarget="true" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="The link to a collection of certificates that the external account provider uses."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain a link to a resource collection of type CertificateCollection that contains certificates the external account provider uses."/> |
| <Annotation Term="OData.AutoExpandReferences"/> |
| </NavigationProperty> |
| </ComplexType> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_4_1"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to force the regeneration of JSON Schema so that URI properties use the uri-reference format. It also clarifies property descriptions in LDAPSearchSettings and adds a missing term to several properties to disallow them from being `null`."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_4_0.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_4_2"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to update the description of the Password, Token, and KerberosKeytab properties. It was also created to clarify the usage of the LDAPService property."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_4_1.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_4_3"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the description for AuthFailureLoggingThreshold."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_4_2.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_4_4"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for MinPasswordLength and MaxPasswordLength to state they do not apply to accounts from external account providers. It was also created to make MinPasswordLength and MaxPasswordLength writable. The description for AuthFailureLoggingThreshold was also updated to clarify that the threshold applies to authentication failures per account."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_4_3.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_4_5"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to fix typos in descriptions and long descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_4_4.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_4_6"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to correct various descriptions to use proper normative terminology."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_4_5.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_4_7"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify that services are allowed to protect accounts to avoid deadlock conditions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_4_6.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_4_8"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to mark properties with values containing sensitive data as write-only."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_4_7.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_4_9"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to add the URI segment annotation to AdditionalExternalAccountProviders."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_4_8.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_4_10"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for the values of AccountProviderType. It was also created to expand the `LDAPService` value for AccountProviderType to allow for a scheme and port to be specified."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_4_9.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_4_11"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to remove normative language from non-normative descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_4_10.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_5_0"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="Redfish.Release" String="2019.1"/> |
| <Annotation Term="OData.Description" String="This version was created to add the AccountLockoutCounterResetEnabled property, update the long descriptions of the AccountLockoutCounterResetAfter and AccountLockoutDuration properties, and deprecate the AccountProviderType property."/> |
| |
| <EntityType Name="AccountService" BaseType="AccountService.v1_4_1.AccountService"> |
| <Property Name="AccountLockoutCounterResetEnabled" Type="Edm.Boolean" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="An indication of whether the threshold counter is reset after AccountLockoutCounterResetAfter expires. If `true`, it is reset. If `false`, only a successful login resets the threshold counter and if the user reaches the AccountLockoutThreshold limit, the account will be locked out indefinitely and only an administrator-issued reset clears the threshold counter. If this property is absent, the default is `true`."/> |
| <Annotation Term="OData.LongDescription" String="This property shall indicate whether the threshold counter is reset after the AccountLockoutCounterResetAfter expires. If `true`, it is reset. If `false`, only a successful login resets the threshold counter and if the user reaches the AccountLockoutThreshold limit, the account shall be locked out indefinitely and only an administrator-issued reset clears the threshold counter. If this property is absent, the default is `true`."/> |
| </Property> |
| </EntityType> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_5_1"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to update the description of the Password, Token, and KerberosKeytab properties. It was also created to clarify the usage of the LDAPService property."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_5_0.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_5_2"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the description for AuthFailureLoggingThreshold."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_5_1.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_5_3"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for MinPasswordLength and MaxPasswordLength to state they do not apply to accounts from external account providers. It was also created to make MinPasswordLength and MaxPasswordLength writable. The description for AuthFailureLoggingThreshold was also updated to clarify that the threshold applies to authentication failures per account."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_5_2.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_5_4"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to fix typos in descriptions and long descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_5_3.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_5_5"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to correct various descriptions to use proper normative terminology."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_5_4.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_5_6"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify that services are allowed to protect accounts to avoid deadlock conditions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_5_5.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_5_7"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to mark properties with values containing sensitive data as write-only."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_5_6.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_5_8"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to add the URI segment annotation to AdditionalExternalAccountProviders."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_5_7.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_5_9"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for the values of AccountProviderType. It was also created to expand the `LDAPService` value for AccountProviderType to allow for a scheme and port to be specified."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_5_8.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_5_10"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to remove normative language from non-normative descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_5_9.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_6_0"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="Redfish.Release" String="2019.2"/> |
| <Annotation Term="OData.Description" String="This version was created to add LocalFirst to the LocalAccountAuth enumeration."/> |
| |
| <EntityType Name="AccountService" BaseType="AccountService.v1_5_1.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_6_1"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the description for AuthFailureLoggingThreshold."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_6_0.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_6_2"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for MinPasswordLength and MaxPasswordLength to state they do not apply to accounts from external account providers. It was also created to make MinPasswordLength and MaxPasswordLength writable. The description for AuthFailureLoggingThreshold was also updated to clarify that the threshold applies to authentication failures per account."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_6_1.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_6_3"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to fix typos in descriptions and long descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_6_2.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_6_4"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to correct various descriptions to use proper normative terminology."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_6_3.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_6_5"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify that services are allowed to protect accounts to avoid deadlock conditions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_6_4.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_6_6"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to mark properties with values containing sensitive data as write-only."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_6_5.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_6_7"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to add the URI segment annotation to AdditionalExternalAccountProviders."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_6_6.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_6_8"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for the values of AccountProviderType. It was also created to expand the `LDAPService` value for AccountProviderType to allow for a scheme and port to be specified."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_6_7.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_6_9"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to remove normative language from non-normative descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_6_8.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_7_0"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="Redfish.Release" String="2019.4"/> |
| |
| <EntityType Name="AccountService" BaseType="AccountService.v1_6_0.AccountService"/> |
| |
| <ComplexType Name="ExternalAccountProvider" BaseType="AccountService.v1_4_0.ExternalAccountProvider"> |
| <Property Name="PasswordSet" Type="Edm.Boolean" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="Indicates if the Password property is set."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain `true` if a valid value was provided for the Password property. Otherwise, the property shall contain `false`."/> |
| </Property> |
| </ComplexType> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_7_1"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the description for AuthFailureLoggingThreshold."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_7_0.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_7_2"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for MinPasswordLength and MaxPasswordLength to state they do not apply to accounts from external account providers. It was also created to make MinPasswordLength and MaxPasswordLength writable. The description for AuthFailureLoggingThreshold was also updated to clarify that the threshold applies to authentication failures per account."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_7_1.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_7_3"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to fix typos in descriptions and long descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_7_2.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_7_4"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to correct various descriptions to use proper normative terminology."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_7_3.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_7_5"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify that services are allowed to protect accounts to avoid deadlock conditions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_7_4.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_7_6"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to mark properties with values containing sensitive data as write-only."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_7_5.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_7_7"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to add the URI segment annotation to AdditionalExternalAccountProviders."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_7_6.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_7_8"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for the values of AccountProviderType. It was also created to expand the `LDAPService` value for AccountProviderType to allow for a scheme and port to be specified."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_7_7.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_7_9"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to remove normative language from non-normative descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_7_8.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_8_0"> |
| <Annotation Term="Redfish.Release" String="2020.4"/> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to add TACACS+ support and SupportedAccountTypes."/> |
| |
| <EntityType Name="AccountService" BaseType="AccountService.v1_7_3.AccountService"> |
| <Property Name="TACACSplus" Type="AccountService.v1_8_0.ExternalAccountProvider"> |
| <Annotation Term="OData.Description" String="The first TACACS+ external account provider that this account service supports."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the first TACACS+ external account provider that this account service supports. If the account service supports one or more TACACS+ services as an external account provider, this entity shall be populated by default. This entity shall not be present in the additional external account providers resource collection."/> |
| </Property> |
| <Property Name="SupportedAccountTypes" Type="Collection(ManagerAccount.AccountTypes)" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="The account types supported by the service."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain an array of the account types supported by the service."/> |
| </Property> |
| <Property Name="SupportedOEMAccountTypes" Type="Collection(Edm.String)" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="The OEM account types supported by the service."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain an array of the OEM account types supported by the service."/> |
| </Property> |
| <Property Name="RestrictedPrivileges" Type="Collection(Privileges.PrivilegeType)" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="The set of restricted Redfish privileges."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain an array of Redfish privileges that are restricted by the service."/> |
| </Property> |
| <Property Name="RestrictedOemPrivileges" Type="Collection(Edm.String)" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="The set of restricted OEM privileges."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain an array of OEM privileges that are restricted by the service."/> |
| </Property> |
| </EntityType> |
| |
| <ComplexType Name="ExternalAccountProvider" BaseType="AccountService.v1_7_0.ExternalAccountProvider"> |
| <Property Name="TACACSplusService" Type="AccountService.v1_8_0.TACACSplusService"> |
| <Annotation Term="OData.Description" String="The additional information needed to parse a TACACS+ services."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain additional information needed to parse a TACACS+ services. This property should only be present inside a TACACSplus property."/> |
| </Property> |
| <Property Name="Priority" Type="Edm.Int64"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The authentication priority for the external account provider."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the assigned priority for the specified external account provider. The value `0` shall indicate the highest priority. Increasing values shall represent decreasing priority. If an external provider does not have a priority assignment or two or more external providers have the same priority, the behavior shall be determined by the Redfish service. The priority is used to determine the order of authentication and authorization for each external account provider."/> |
| <Annotation Term="Validation.Minimum" Int="0"/> |
| </Property> |
| </ComplexType> |
| |
| <ComplexType Name="Authentication" BaseType="AccountService.v1_3_0.Authentication"> |
| <Property Name="EncryptionKey" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Write"/> |
| <Annotation Term="OData.Description" String="Specifies the encryption key."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the value of a symmetric encryption key for account services that support some form of encryption, obfuscation, or authentication such as TACACS+. The value shall be `null` in responses. The property shall accept a hexadecimal string whose length depends on the external account service, such as TACACS+. A TACACS+ service shall use this property to specify the secret key as defined in RFC8907."/> |
| <Annotation Term="Validation.Pattern" String="^[0-9a-fA-F]+$"/> |
| </Property> |
| <Property Name="EncryptionKeySet" Type="Edm.Boolean"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="Indicates if the EncryptionKey property is set."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain `true` if a valid value was provided for the EncryptionKey property. Otherwise, the property shall contain `false`. For a TACACS+ service, the value `false` shall indicate data obfuscation, as defined in section 4.5 of RFC8907, is disabled."/> |
| </Property> |
| </ComplexType> |
| |
| <ComplexType Name="TACACSplusService"> |
| <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| <Annotation Term="OData.Description" String="Various settings to parse a TACACS+ service."/> |
| <Annotation Term="OData.LongDescription" String="This type shall contain settings for parsing a TACACS+ service."/> |
| <Property Name="PrivilegeLevelArgument" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="Indicates the name of the TACACS+ argument name in an authorization request."/> |
| <Annotation Term="OData.LongDescription" String="This property shall specify the name of the argument in a TACACS+ Authorization REPLY packet body, as defined in RFC8907, that contains the user's privilege level."/> |
| </Property> |
| <Property Name="PasswordExchangeProtocols" Type="Collection(AccountService.v1_8_0.TACACSplusPasswordExchangeProtocol)"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="Indicates the allowed TACACS+ password exchange protocols."/> |
| <Annotation Term="OData.LongDescription" String="This property shall indicate all the allowed TACACS+ password exchange protocol described under section 5.4.2 of RFC8907."/> |
| </Property> |
| </ComplexType> |
| |
| <EnumType Name="TACACSplusPasswordExchangeProtocol"> |
| <Member Name="ASCII"> |
| <Annotation Term="OData.Description" String="The ASCII Login method."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate the ASCII Login flow as described under section 5.4.2 of RFC8907."/> |
| </Member> |
| <Member Name="PAP"> |
| <Annotation Term="OData.Description" String="The PAP Login method."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate the PAP Login flow as described under section 5.4.2 of RFC8907."/> |
| </Member> |
| <Member Name="CHAP"> |
| <Annotation Term="OData.Description" String="The CHAP Login method."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate the CHAP Login flow as described under section 5.4.2 of RFC8907."/> |
| </Member> |
| <Member Name="MSCHAPv1"> |
| <Annotation Term="OData.Description" String="The MS-CHAP v1 Login method."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate the MS-CHAP v1 Login flow as described under section 5.4.2 of RFC8907."/> |
| </Member> |
| <Member Name="MSCHAPv2"> |
| <Annotation Term="OData.Description" String="The MS-CHAP v2 Login method."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate the MS-CHAP v2 Login flow as described under section 5.4.2 of RFC8907."/> |
| </Member> |
| </EnumType> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_8_1"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to correct various descriptions to use proper normative terminology."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_8_0.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_8_2"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify that services are allowed to protect accounts to avoid deadlock conditions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_8_1.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_8_3"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to mark properties with values containing sensitive data as write-only."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_8_2.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_8_4"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to add the URI segment annotation to AdditionalExternalAccountProviders."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_8_3.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_8_5"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for the values of AccountProviderType. It was also created to expand the `LDAPService` value for AccountProviderType to allow for a scheme and port to be specified."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_8_4.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_8_6"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to remove normative language from non-normative descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_8_5.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_8_7"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to correct various typographical errors."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_8_6.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_9_0"> |
| <Annotation Term="Redfish.Release" String="2021.1"/> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to add the property PasswordExpirationDays."/> |
| |
| <EntityType Name="AccountService" BaseType="AccountService.v1_8_0.AccountService"> |
| <Property Name="PasswordExpirationDays" Type="Edm.Int64"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The number of days before account passwords in this account service will expire."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the number of days before account passwords in this account service will expire. The value shall be applied during account creation and password modification unless the PasswordExpiration property is provided. The value `null` shall indicate that account passwords never expire. This property does not apply to accounts from external account providers."/> |
| </Property> |
| </EntityType> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_9_1"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify that services are allowed to protect accounts to avoid deadlock conditions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_9_0.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_9_2"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to mark properties with values containing sensitive data as write-only."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_9_1.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_9_3"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to add the URI segment annotation to AdditionalExternalAccountProviders."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_9_2.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_9_4"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for the values of AccountProviderType. It was also created to expand the `LDAPService` value for AccountProviderType to allow for a scheme and port to be specified."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_9_3.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_9_5"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to remove normative language from non-normative descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_9_4.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_9_6"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to correct various typographical errors."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_9_5.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_10_0"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="Redfish.Release" String="2021.2"/> |
| |
| <EntityType Name="AccountService" BaseType="AccountService.v1_9_1.AccountService"> |
| <Property Name="OAuth2" Type="AccountService.v1_10_0.ExternalAccountProvider"> |
| <Annotation Term="OData.Description" String="The first OAuth 2.0 external account provider that this account service supports."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the first OAuth 2.0 external account provider that this account service supports. If the account service supports one or more OAuth 2.0 services as an external account provider, this entity shall be populated by default. This entity shall not be present in the additional external account providers resource collection."/> |
| </Property> |
| </EntityType> |
| |
| <ComplexType Name="ExternalAccountProvider" BaseType="AccountService.v1_8_0.ExternalAccountProvider"> |
| <Property Name="OAuth2Service" Type="AccountService.v1_10_0.OAuth2Service"> |
| <Annotation Term="OData.Description" String="The additional information needed to parse an OAuth 2.0 service."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain additional information needed to parse an OAuth 2.0 service. This property should only be present inside an OAuth2 property."/> |
| </Property> |
| </ComplexType> |
| |
| <ComplexType Name="OAuth2Service"> |
| <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| <Annotation Term="OData.Description" String="Various settings to parse an OAuth 2.0 service."/> |
| <Annotation Term="OData.LongDescription" String="This type shall contain settings for parsing an OAuth 2.0 service."/> |
| <Property Name="Mode" Type="AccountService.v1_10_0.OAuth2Mode" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The mode of operation for token validation."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the mode of operation for token validation."/> |
| </Property> |
| <Property Name="Issuer" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The issuer string of the OAuth 2.0 service. Clients should configure this property if Mode contains `Offline`."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the RFC8414-defined issuer string of the OAuth 2.0 service. If the Mode property contains the value `Discovery`, this property shall contain the value of the `issuer` string from the OAuth 2.0 service's metadata and this property shall be read-only. Clients should configure this property if Mode contains `Offline`."/> |
| </Property> |
| <Property Name="Audience" Type="Collection(Edm.String)" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="The allowable audience strings of the Redfish service."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain an array of allowable RFC7519-defined audience strings of the Redfish service. The values shall uniquely identify the Redfish service. For example, a MAC address or UUID for the manager can uniquely identify the service."/> |
| </Property> |
| <Property Name="OAuthServiceSigningKeys" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The Base64-encoded signing keys of the issuer of the OAuth 2.0 service. Clients should configure this property if Mode contains `Offline`."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain a Base64-encoded string of the RFC7517-defined signing keys of the issuer of the OAuth 2.0 service. Services shall verify the token provided in the `Authorization` header of the request with the value of this property. If the Mode property contains the value `Discovery`, this property shall contain the keys found at the URI specified by the `jwks_uri` string from the OAuth 2.0 service's metadata and this property shall be read-only. Clients should configure this property if Mode contains `Offline`."/> |
| </Property> |
| </ComplexType> |
| |
| <EnumType Name="OAuth2Mode"> |
| <Member Name="Discovery"> |
| <Annotation Term="OData.Description" String="OAuth 2.0 service information for token validation is downloaded by the service."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate the service performs token validation from information found at the URIs specified by the ServiceAddresses property. Services shall implement a caching method of this information so it's not necessary to retrieve metadata and key information for every request containing a token."/> |
| </Member> |
| <Member Name="Offline"> |
| <Annotation Term="OData.Description" String="OAuth 2.0 service information for token validation is configured by a client. Clients should configure the Issuer and OAuthServiceSigningKeys properties for this mode."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate the service performs token validation from properties configured by a client. Clients should configure the Issuer and OAuthServiceSigningKeys properties for this mode."/> |
| </Member> |
| </EnumType> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_10_1"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to give guidance to clients to describe which properties should be configured if Mode in OAuth2 contains `Offline`."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_10_0.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_10_2"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the usage of OAuthServiceSigningKeys with token validation."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_10_1.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_10_3"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to mark properties with values containing sensitive data as write-only."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_10_2.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_10_4"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to add the URI segment annotation to AdditionalExternalAccountProviders."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_10_3.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_10_5"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for the values of AccountProviderType. It was also created to expand the `LDAPService` value for AccountProviderType to allow for a scheme and port to be specified."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_10_4.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_10_6"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to remove normative language from non-normative descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_10_5.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_10_7"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to correct various typographical errors."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_10_6.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_11_0"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="Redfish.Release" String="2022.1"/> |
| |
| <EntityType Name="AccountService" BaseType="AccountService.v1_10_0.AccountService"/> |
| |
| <ComplexType Name="LDAPSearchSettings" BaseType="AccountService.v1_3_0.LDAPSearchSettings"> |
| <Property Name="SSHKeyAttribute" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The attribute name that contains the LDAP user's SSH public key entry."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the attribute name that contains the LDAP user's SSH public key."/> |
| </Property> |
| </ComplexType> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_11_1"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to give guidance to clients to describe which properties should be configured if Mode in OAuth2 contains `Offline`."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_11_0.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_11_2"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the usage of OAuthServiceSigningKeys with token validation."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_11_1.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_11_3"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to mark properties with values containing sensitive data as write-only."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_11_2.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_11_4"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to add the URI segment annotation to AdditionalExternalAccountProviders."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_11_3.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_11_5"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for the values of AccountProviderType. It was also created to expand the `LDAPService` value for AccountProviderType to allow for a scheme and port to be specified."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_11_4.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_11_6"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to remove normative language from non-normative descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_11_5.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_11_7"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to correct various typographical errors."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_11_6.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_12_0"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="Redfish.Release" String="2022.3"/> |
| |
| <EntityType Name="AccountService" BaseType="AccountService.v1_11_3.AccountService"> |
| <Property Name="MultiFactorAuth" Type="AccountService.v1_12_0.MultiFactorAuth"> |
| <Annotation Term="OData.Description" String="The multi-factor authentication settings that this account service supports."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the multi-factor authentication settings that this account service supports."/> |
| </Property> |
| </EntityType> |
| |
| <ComplexType Name="MultiFactorAuth"> |
| <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| <Annotation Term="OData.Description" String="Multi-factor authentication settings."/> |
| <Annotation Term="OData.LongDescription" String="This type shall contain multi-factor authentication settings."/> |
| <Property Name="SecurID" Type="AccountService.v1_12_0.SecurID"> |
| <Annotation Term="OData.Description" String="The settings related to RSA SecurID multi-factor authentication."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the settings related to RSA SecurID multi-factor authentication."/> |
| </Property> |
| <Property Name="GoogleAuthenticator" Type="AccountService.v1_12_0.GoogleAuthenticator"> |
| <Annotation Term="OData.Description" String="The settings related to Google Authenticator multi-factor authentication."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the settings related to Google Authenticator multi-factor authentication."/> |
| </Property> |
| <Property Name="MicrosoftAuthenticator" Type="AccountService.v1_12_0.MicrosoftAuthenticator"> |
| <Annotation Term="OData.Description" String="The settings related to Microsoft Authenticator multi-factor authentication."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the settings related to Microsoft Authenticator multi-factor authentication."/> |
| </Property> |
| <Property Name="ClientCertificate" Type="AccountService.v1_12_0.ClientCertificate"> |
| <Annotation Term="OData.Description" String="The settings related to client certificate authentication schemes such as mTLS or CAC/PIV."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the settings related to client certificate authentication."/> |
| </Property> |
| </ComplexType> |
| |
| <ComplexType Name="SecurID"> |
| <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| <Annotation Term="OData.Description" String="Various settings for RSA SecurID multi-factor authentication."/> |
| <Annotation Term="OData.LongDescription" String="This type shall contain settings for RSA SecurID multi-factor authentication."/> |
| <Property Name="Enabled" Type="Edm.Boolean"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="An indication of whether multi-factor authentication with RSA SecurID is enabled."/> |
| <Annotation Term="OData.LongDescription" String="This property shall indicate whether multi-factor authentication with RSA SecurID is enabled."/> |
| </Property> |
| <Property Name="ServerURI" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The URI of the RSA SecurID server."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the URI of the RSA SecurID server."/> |
| <Annotation Term="OData.IsURL"/> |
| </Property> |
| <Property Name="ClientId" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The client ID to use when communicating with the RSA SecurID server."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the client ID to use when communicating with the RSA SecurID server."/> |
| </Property> |
| <Property Name="ClientSecret" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The client secret to use when communicating with the RSA SecurID server. This property is `null` in responses."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the client secret to use when communicating with the RSA SecurID server. The value shall be `null` in responses."/> |
| </Property> |
| <Property Name="ClientSecretSet" Type="Edm.Boolean" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="Indicates if the ClientSecret property is set."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain `true` if a valid value was provided for the ClientSecret property. Otherwise, the property shall contain `false`."/> |
| </Property> |
| <NavigationProperty Name="Certificates" Type="CertificateCollection.CertificateCollection" ContainsTarget="true" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="The link to a collection of server certificates for the RSA SecurID server referenced by the ServerURI property."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain a link to a resource collection of type CertificateCollection that represent the server certificates for the RSA SecurID server referenced by the ServerURI property. Regardless of the contents of this collection, services may perform additional verification based on other factors, such as the configuration of the SecurityPolicy resource."/> |
| <Annotation Term="OData.AutoExpandReferences"/> |
| </NavigationProperty> |
| </ComplexType> |
| |
| <ComplexType Name="GoogleAuthenticator"> |
| <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| <Annotation Term="OData.Description" String="Various settings for Google Authenticator multi-factor authentication."/> |
| <Annotation Term="OData.LongDescription" String="This type shall contain settings for Google Authenticator multi-factor authentication."/> |
| <Property Name="Enabled" Type="Edm.Boolean"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="An indication of whether multi-factor authentication with Google Authenticator is enabled."/> |
| <Annotation Term="OData.LongDescription" String="This property shall indicate whether multi-factor authentication with Google Authenticator is enabled."/> |
| </Property> |
| <Property Name="SecretKey" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The secret key to use when communicating with the Google Authenticator server. This property is `null` in responses."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the client key to use when communicating with the Google Authenticator Server. The value shall be `null` in responses."/> |
| </Property> |
| <Property Name="SecretKeySet" Type="Edm.Boolean" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="Indicates if the SecretKey property is set."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain `true` if a valid value was provided for the SecretKey property. Otherwise, the property shall contain `false`."/> |
| </Property> |
| </ComplexType> |
| |
| <ComplexType Name="MicrosoftAuthenticator"> |
| <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| <Annotation Term="OData.Description" String="Various settings for Microsoft Authenticator multi-factor authentication."/> |
| <Annotation Term="OData.LongDescription" String="This type shall contain settings for Microsoft Authenticator multi-factor authentication."/> |
| <Property Name="Enabled" Type="Edm.Boolean"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="An indication of whether multi-factor authentication with Microsoft Authenticator is enabled."/> |
| <Annotation Term="OData.LongDescription" String="This property shall indicate whether multi-factor authentication with Microsoft Authenticator is enabled."/> |
| </Property> |
| <Property Name="SecretKey" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The secret key to use when communicating with the Microsoft Authenticator server. This property is `null` in responses."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the client key to use when communicating with the Microsoft Authenticator server. The value shall be `null` in responses."/> |
| </Property> |
| <Property Name="SecretKeySet" Type="Edm.Boolean" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="Indicates if the SecretKey property is set."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain `true` if a valid value was provided for the SecretKey property. Otherwise, the property shall contain `false`."/> |
| </Property> |
| </ComplexType> |
| |
| <ComplexType Name="ClientCertificate"> |
| <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| <Annotation Term="OData.Description" String="Various settings for client certificate authentication such as mTLS or CAC/PIV."/> |
| <Annotation Term="OData.LongDescription" String="This type shall contain settings for client certificate authentication."/> |
| <Property Name="Enabled" Type="Edm.Boolean"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="An indication of whether client certificate authentication is enabled."/> |
| <Annotation Term="OData.LongDescription" String="This property shall indicate whether client certificate authentication is enabled."/> |
| </Property> |
| <Property Name="RespondToUnauthenticatedClients" Type="Edm.Boolean"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="An indication of whether the service responds to clients that do not successfully authenticate."/> |
| <Annotation Term="OData.LongDescription" String="This property shall indicate whether the service responds to clients that do not successfully authenticate. If this property is not supported by the service, it shall be assumed to be `true`. See the 'Client certificate authentication' clause in the Redfish Specification."/> |
| </Property> |
| <Property Name="CertificateMappingAttribute" Type="AccountService.v1_12_0.CertificateMappingAttribute"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The client certificate attribute to map to a user."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the client certificate attribute to map to a user."/> |
| </Property> |
| <NavigationProperty Name="Certificates" Type="CertificateCollection.CertificateCollection" ContainsTarget="true" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| <Annotation Term="OData.Description" String="The link to a collection of CA certificates used to validate client certificates."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain a link to a resource collection of type CertificateCollection that represents the CA certificates used to validate client certificates during TLS handshaking. Regardless of the contents of this collection, services may perform additional verification based on other factors, such as the configuration of the SecurityPolicy resource. If the service supports the RevokedCertificates or TrustedCertificates properties within the Client property within TLS property of the SecurityPolicy resource, the service shall verify the provided client certificate with the SecurityPolicy resource prior to verifying it with this collection."/> |
| <Annotation Term="OData.AutoExpandReferences"/> |
| </NavigationProperty> |
| </ComplexType> |
| |
| <EnumType Name="CertificateMappingAttribute"> |
| <Member Name="Whole"> |
| <Annotation Term="OData.Description" String="Match the whole certificate."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate the service matches the entire certificate with a Certificate resource subordinate to a ManagerAccount resource or the entire certificate matches the appropriate field from an external account provider."/> |
| </Member> |
| <Member Name="CommonName"> |
| <Annotation Term="OData.Description" String="Match the Common Name (CN) field in the provided certificate to the username."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate the service matches the RFC5280-defined 'commonName' attribute in the provided certificate to the UserName property in a ManagerAccount resource or the appropriate field from an external account provider."/> |
| </Member> |
| <Member Name="UserPrincipalName"> |
| <Annotation Term="OData.Description" String="Match the User Principal Name (UPN) field in the provided certificate to the username."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate the service matches the User Principal Name (UPN) field in the provided certificate to the UserName property in a ManagerAccount resource or the appropriate field from an external account provider."/> |
| </Member> |
| </EnumType> |
| |
| <ComplexType Name="RoleMapping" BaseType="AccountService.v1_3_0.RoleMapping"> |
| <Property Name="MFABypass" Type="AccountService.MFABypass"> |
| <Annotation Term="OData.Description" String="The multi-factor authentication bypass settings."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the multi-factor authentication bypass settings."/> |
| </Property> |
| </ComplexType> |
| |
| <ComplexType Name="MFABypass" BaseType="AccountService.MFABypass"> |
| <Property Name="BypassTypes" Type="Collection(AccountService.MFABypassType)"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The types of multi-factor authentication this account or role mapping is allowed to bypass."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the types of multi-factor authentication this account or role mapping is allowed to bypass. An empty array shall indicate this account or role mapping cannot bypass any multi-factor authentication types that are currently enabled."/> |
| </Property> |
| </ComplexType> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_12_1"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to add the URI segment annotation to AdditionalExternalAccountProviders."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_12_0.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_12_2"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for the values of AccountProviderType. It was also created to expand the `LDAPService` value for AccountProviderType to allow for a scheme and port to be specified."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_12_1.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_12_3"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to remove normative language from non-normative descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_12_2.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_12_4"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to correct various typographical errors."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_12_3.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_13_0"> |
| <Annotation Term="Redfish.Release" String="2023.1"/> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| |
| <EntityType Name="AccountService" BaseType="AccountService.v1_12_1.AccountService"/> |
| |
| <ComplexType Name="ExternalAccountProvider" BaseType="AccountService.v1_10_0.ExternalAccountProvider"> |
| <Property Name="Retries" Type="Edm.Int64"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The number of times to retry connecting to an address in the ServiceAddresses property before attempting the next address in the array."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the number of retries to attempt a connection to an address in the ServiceAddresses property before attempting a connection to the next address in the array or giving up. If this property is not present, the service has internal policies for handling retries."/> |
| </Property> |
| <Property Name="TimeoutSeconds" Type="Edm.Int64"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The period of time, in seconds, this account service will wait for a response from an address of a user account provider before timing out."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the period of time, in seconds, this account service will wait for a response from an address of a user account provider before timing out. If this property is not present, the service has internal policies for handling timeouts."/> |
| </Property> |
| </ComplexType> |
| |
| <ComplexType Name="TACACSplusService" BaseType="AccountService.v1_8_0.TACACSplusService"> |
| <Property Name="AuthorizationService" Type="Edm.String" Nullable="false"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The TACACS+ service authorization argument."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the TACACS+ service authorization argument as defined by section 8.2 of RFC8907. If this property is not present, the service defines the value to provide to the TACACS+ server."/> |
| </Property> |
| <Property Name="Oem" Type="Resource.Oem" Nullable="false"> |
| <Annotation Term="OData.Description" String="The OEM extension property."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the OEM extensions. All values for properties contained in this object shall conform to the Redfish Specification-described requirements."/> |
| </Property> |
| </ComplexType> |
| |
| <ComplexType Name="OAuth2Service" BaseType="AccountService.v1_10_0.OAuth2Service"> |
| <Property Name="Oem" Type="Resource.Oem" Nullable="false"> |
| <Annotation Term="OData.Description" String="The OEM extension property."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the OEM extensions. All values for properties contained in this object shall conform to the Redfish Specification-described requirements."/> |
| </Property> |
| </ComplexType> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_13_1"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to clarify the descriptions for the values of AccountProviderType. It was also created to expand the `LDAPService` value for AccountProviderType to allow for a scheme and port to be specified."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_13_0.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_13_2"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to remove normative language from non-normative descriptions."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_13_1.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_13_3"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to correct various typographical errors."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_13_2.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_14_0"> |
| <Annotation Term="Redfish.Release" String="2023.2"/> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| |
| <EntityType Name="AccountService" BaseType="AccountService.v1_13_1.AccountService"> |
| <Property Name="RequireChangePasswordAction" Type="Edm.Boolean"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="An indication of whether clients are required to invoke the ChangePassword action to modify account passwords."/> |
| <Annotation Term="OData.LongDescription" String="This property shall indicate whether clients are required to invoke the ChangePassword action to modify the password property in ManagerAccount resources. If `true`, services shall reject PATCH and PUT requests to modify the Password property in ManagerAccount resources."/> |
| </Property> |
| <NavigationProperty Name="OutboundConnections" Type="OutboundConnectionCollection.OutboundConnectionCollection"> |
| <Annotation Term="OData.Description" String="The collection of outbound connection configurations."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain a resource collection of type OutboundConnectionCollection."/> |
| </NavigationProperty> |
| </EntityType> |
| |
| <ComplexType Name="MultiFactorAuth" BaseType="AccountService.v1_12_0.MultiFactorAuth"> |
| <Property Name="OneTimePasscode" Type="AccountService.v1_14_0.OneTimePasscode"> |
| <Annotation Term="OData.Description" String="The settings related to one-time passcode (OTP) multi-factor authentication."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the settings related to one-time passcode multi-factor authentication."/> |
| </Property> |
| </ComplexType> |
| |
| <ComplexType Name="OneTimePasscode"> |
| <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| <Annotation Term="OData.Description" String="Various settings for one-time passcode (OTP) multi-factor authentication."/> |
| <Annotation Term="OData.LongDescription" String="This type shall contain settings for one-time passcode (OTP) multi-factor authentication."/> |
| <Property Name="Enabled" Type="Edm.Boolean"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="An indication of whether multi-factor authentication using a one-time passcode is enabled."/> |
| <Annotation Term="OData.LongDescription" String="This property shall indicate whether multi-factor authentication using a one-time passcode is enabled. The passcode is sent to the delivery address associated with the account credentials provided in the request. If the credentials are associated with a ManagerAccount resource, the delivery address is specified by the OneTimePasscodeDeliveryAddress property. If the credentials are associated with a user from an LDAP account provider, the delivery address is contained in the LDAP attribute specified by the EmailAttribute property. An attempt to create a session when the Token property is not included in the request shall generate a message sent to the delivery address, using the SMTP settings from the Redfish event service, containing a one-time passcode. The service shall accept the one-time passcode as the valid value for the Token property in the next POST operation to create a session for the respective account."/> |
| </Property> |
| </ComplexType> |
| |
| <ComplexType Name="LDAPSearchSettings" BaseType="AccountService.v1_11_0.LDAPSearchSettings"> |
| <Property Name="EmailAttribute" Type="Edm.String"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="The attribute name that contains the LDAP user's email address."/> |
| <Annotation Term="OData.LongDescription" String="This property shall contain the attribute name that contains the LDAP user's email address. If this value is not set by the user, or the property is not present, the value shall be `mail`."/> |
| </Property> |
| </ComplexType> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_14_1"> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| <Annotation Term="OData.Description" String="This version was created to correct various typographical errors."/> |
| <EntityType Name="AccountService" BaseType="AccountService.v1_14_0.AccountService"/> |
| </Schema> |
| |
| <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="AccountService.v1_15_0"> |
| <Annotation Term="Redfish.Release" String="2023.3"/> |
| <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| |
| <EntityType Name="AccountService" BaseType="AccountService.v1_14_1.AccountService"> |
| <Property Name="HTTPBasicAuth" Type="AccountService.v1_15_0.BasicAuthState"> |
| <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| <Annotation Term="OData.Description" String="Indicates if HTTP Basic authentication is enabled for this service."/> |
| <Annotation Term="OData.LongDescription" String="This property shall indicate whether clients are able to authenticate to the Redfish service with HTTP Basic authentication. This property should default to `Enabled` for client compatibility. If this property is not present in responses, the value shall be assumed to be `Enabled`."/> |
| </Property> |
| </EntityType> |
| |
| <EnumType Name="BasicAuthState"> |
| <Member Name="Enabled"> |
| <Annotation Term="OData.Description" String="HTTP Basic authentication is enabled."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate that HTTP Basic authentication is enabled for the service. The service shall include the `WWW-Authenticate` HTTP response header with the value including `Basic` when returning the HTTP 401 (Unauthorized) status code."/> |
| </Member> |
| <Member Name="Unadvertised"> |
| <Annotation Term="OData.Description" String="HTTP Basic authentication is enabled, but is not advertised with the `WWW-Authenticate` response header."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate that HTTP Basic authentication is enabled for the service. The service shall not include `Basic` in the value of the `WWW-Authenticate` HTTP response header and may omit the header entirely from responses. The lack of advertisement prevents some clients from accessing the service with HTTP Basic authentication, such as web browsers."/> |
| </Member> |
| <Member Name="Disabled"> |
| <Annotation Term="OData.Description" String="HTTP Basic authentication is disabled."/> |
| <Annotation Term="OData.LongDescription" String="This value shall indicate that HTTP Basic authentication is disabled for the service."/> |
| </Member> |
| </EnumType> |
| </Schema> |
| |
| </edmx:DataServices> |
| </edmx:Edmx> |