1*c6d7a45dSGunnar Mills{ 2*c6d7a45dSGunnar Mills "$id": "http://redfish.dmtf.org/schemas/v1/ManagerAccount.v1_14_0.json", 3*c6d7a45dSGunnar Mills "$ref": "#/definitions/ManagerAccount", 4*c6d7a45dSGunnar Mills "$schema": "http://redfish.dmtf.org/schemas/v1/redfish-schema-v1.json", 5*c6d7a45dSGunnar Mills "copyright": "Copyright 2014-2025 DMTF. For the full DMTF copyright policy, see http://www.dmtf.org/about/policies/copyright", 6*c6d7a45dSGunnar Mills "definitions": { 7*c6d7a45dSGunnar Mills "Actions": { 8*c6d7a45dSGunnar Mills "additionalProperties": false, 9*c6d7a45dSGunnar Mills "description": "The available actions for this resource.", 10*c6d7a45dSGunnar Mills "longDescription": "This type shall contain the available actions for this resource.", 11*c6d7a45dSGunnar Mills "patternProperties": { 12*c6d7a45dSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 13*c6d7a45dSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 14*c6d7a45dSGunnar Mills "type": [ 15*c6d7a45dSGunnar Mills "array", 16*c6d7a45dSGunnar Mills "boolean", 17*c6d7a45dSGunnar Mills "integer", 18*c6d7a45dSGunnar Mills "number", 19*c6d7a45dSGunnar Mills "null", 20*c6d7a45dSGunnar Mills "object", 21*c6d7a45dSGunnar Mills "string" 22*c6d7a45dSGunnar Mills ] 23*c6d7a45dSGunnar Mills } 24*c6d7a45dSGunnar Mills }, 25*c6d7a45dSGunnar Mills "properties": { 26*c6d7a45dSGunnar Mills "#ManagerAccount.ChangePassword": { 27*c6d7a45dSGunnar Mills "$ref": "#/definitions/ChangePassword" 28*c6d7a45dSGunnar Mills }, 29*c6d7a45dSGunnar Mills "#ManagerAccount.ClearSecretKey": { 30*c6d7a45dSGunnar Mills "$ref": "#/definitions/ClearSecretKey" 31*c6d7a45dSGunnar Mills }, 32*c6d7a45dSGunnar Mills "#ManagerAccount.GenerateSecretKey": { 33*c6d7a45dSGunnar Mills "$ref": "#/definitions/GenerateSecretKey" 34*c6d7a45dSGunnar Mills }, 35*c6d7a45dSGunnar Mills "#ManagerAccount.VerifyTimeBasedOneTimePassword": { 36*c6d7a45dSGunnar Mills "$ref": "#/definitions/VerifyTimeBasedOneTimePassword" 37*c6d7a45dSGunnar Mills }, 38*c6d7a45dSGunnar Mills "Oem": { 39*c6d7a45dSGunnar Mills "$ref": "#/definitions/OemActions", 40*c6d7a45dSGunnar Mills "description": "The available OEM-specific actions for this resource.", 41*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the available OEM-specific actions for this resource.", 42*c6d7a45dSGunnar Mills "versionAdded": "v1_1_0" 43*c6d7a45dSGunnar Mills } 44*c6d7a45dSGunnar Mills }, 45*c6d7a45dSGunnar Mills "type": "object" 46*c6d7a45dSGunnar Mills }, 47*c6d7a45dSGunnar Mills "ChangePassword": { 48*c6d7a45dSGunnar Mills "additionalProperties": false, 49*c6d7a45dSGunnar Mills "description": "This action changes the account password.", 50*c6d7a45dSGunnar Mills "longDescription": "This action shall change the account password while requiring password for the current session. This action prevents session hijacking.", 51*c6d7a45dSGunnar Mills "parameters": { 52*c6d7a45dSGunnar Mills "NewPassword": { 53*c6d7a45dSGunnar Mills "description": "The new account password.", 54*c6d7a45dSGunnar Mills "longDescription": "This parameter shall contain the new password.", 55*c6d7a45dSGunnar Mills "requiredParameter": true, 56*c6d7a45dSGunnar Mills "type": "string" 57*c6d7a45dSGunnar Mills }, 58*c6d7a45dSGunnar Mills "SessionAccountPassword": { 59*c6d7a45dSGunnar Mills "description": "The password of the account tied to the current session.", 60*c6d7a45dSGunnar Mills "longDescription": "This parameter shall contain the password of the current session's account. A user changing their own password shall provide their current password for this parameter. An administrator changing the password for a different user shall provide their own password for this parameter. If the request is performed with HTTP Basic authentication, this parameter shall contain the same password encoded in the `Authorization` header.", 61*c6d7a45dSGunnar Mills "requiredParameter": true, 62*c6d7a45dSGunnar Mills "type": "string" 63*c6d7a45dSGunnar Mills } 64*c6d7a45dSGunnar Mills }, 65*c6d7a45dSGunnar Mills "patternProperties": { 66*c6d7a45dSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 67*c6d7a45dSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 68*c6d7a45dSGunnar Mills "type": [ 69*c6d7a45dSGunnar Mills "array", 70*c6d7a45dSGunnar Mills "boolean", 71*c6d7a45dSGunnar Mills "integer", 72*c6d7a45dSGunnar Mills "number", 73*c6d7a45dSGunnar Mills "null", 74*c6d7a45dSGunnar Mills "object", 75*c6d7a45dSGunnar Mills "string" 76*c6d7a45dSGunnar Mills ] 77*c6d7a45dSGunnar Mills } 78*c6d7a45dSGunnar Mills }, 79*c6d7a45dSGunnar Mills "properties": { 80*c6d7a45dSGunnar Mills "target": { 81*c6d7a45dSGunnar Mills "description": "Link to invoke action", 82*c6d7a45dSGunnar Mills "format": "uri-reference", 83*c6d7a45dSGunnar Mills "type": "string" 84*c6d7a45dSGunnar Mills }, 85*c6d7a45dSGunnar Mills "title": { 86*c6d7a45dSGunnar Mills "description": "Friendly action name", 87*c6d7a45dSGunnar Mills "type": "string" 88*c6d7a45dSGunnar Mills } 89*c6d7a45dSGunnar Mills }, 90*c6d7a45dSGunnar Mills "type": "object", 91*c6d7a45dSGunnar Mills "versionAdded": "v1_11_0" 92*c6d7a45dSGunnar Mills }, 93*c6d7a45dSGunnar Mills "ClearSecretKey": { 94*c6d7a45dSGunnar Mills "additionalProperties": false, 95*c6d7a45dSGunnar Mills "description": "This action clears the secret key for Time-based One-Time Password (TOTP) multi-factor authentication for this account.", 96*c6d7a45dSGunnar Mills "longDescription": "This action shall clear the secret key for RFC6238-defined Time-based One-Time Password (TOTP) multi-factor authentication for this account.", 97*c6d7a45dSGunnar Mills "parameters": {}, 98*c6d7a45dSGunnar Mills "patternProperties": { 99*c6d7a45dSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 100*c6d7a45dSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 101*c6d7a45dSGunnar Mills "type": [ 102*c6d7a45dSGunnar Mills "array", 103*c6d7a45dSGunnar Mills "boolean", 104*c6d7a45dSGunnar Mills "integer", 105*c6d7a45dSGunnar Mills "number", 106*c6d7a45dSGunnar Mills "null", 107*c6d7a45dSGunnar Mills "object", 108*c6d7a45dSGunnar Mills "string" 109*c6d7a45dSGunnar Mills ] 110*c6d7a45dSGunnar Mills } 111*c6d7a45dSGunnar Mills }, 112*c6d7a45dSGunnar Mills "properties": { 113*c6d7a45dSGunnar Mills "target": { 114*c6d7a45dSGunnar Mills "description": "Link to invoke action", 115*c6d7a45dSGunnar Mills "format": "uri-reference", 116*c6d7a45dSGunnar Mills "type": "string" 117*c6d7a45dSGunnar Mills }, 118*c6d7a45dSGunnar Mills "title": { 119*c6d7a45dSGunnar Mills "description": "Friendly action name", 120*c6d7a45dSGunnar Mills "type": "string" 121*c6d7a45dSGunnar Mills } 122*c6d7a45dSGunnar Mills }, 123*c6d7a45dSGunnar Mills "type": "object", 124*c6d7a45dSGunnar Mills "versionAdded": "v1_13_0" 125*c6d7a45dSGunnar Mills }, 126*c6d7a45dSGunnar Mills "GenerateSecretKey": { 127*c6d7a45dSGunnar Mills "actionResponse": { 128*c6d7a45dSGunnar Mills "$ref": "#/definitions/GenerateSecretKeyResponse" 129*c6d7a45dSGunnar Mills }, 130*c6d7a45dSGunnar Mills "additionalProperties": false, 131*c6d7a45dSGunnar Mills "description": "This action randomly generates a new secret key for Time-based One-Time Password (TOTP) multi-factor authentication for this account.", 132*c6d7a45dSGunnar Mills "longDescription": "This action shall randomly generate a new secret key for RFC6238-defined Time-based One-Time Password (TOTP) multi-factor authentication for this account.", 133*c6d7a45dSGunnar Mills "parameters": {}, 134*c6d7a45dSGunnar Mills "patternProperties": { 135*c6d7a45dSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 136*c6d7a45dSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 137*c6d7a45dSGunnar Mills "type": [ 138*c6d7a45dSGunnar Mills "array", 139*c6d7a45dSGunnar Mills "boolean", 140*c6d7a45dSGunnar Mills "integer", 141*c6d7a45dSGunnar Mills "number", 142*c6d7a45dSGunnar Mills "null", 143*c6d7a45dSGunnar Mills "object", 144*c6d7a45dSGunnar Mills "string" 145*c6d7a45dSGunnar Mills ] 146*c6d7a45dSGunnar Mills } 147*c6d7a45dSGunnar Mills }, 148*c6d7a45dSGunnar Mills "properties": { 149*c6d7a45dSGunnar Mills "target": { 150*c6d7a45dSGunnar Mills "description": "Link to invoke action", 151*c6d7a45dSGunnar Mills "format": "uri-reference", 152*c6d7a45dSGunnar Mills "type": "string" 153*c6d7a45dSGunnar Mills }, 154*c6d7a45dSGunnar Mills "title": { 155*c6d7a45dSGunnar Mills "description": "Friendly action name", 156*c6d7a45dSGunnar Mills "type": "string" 157*c6d7a45dSGunnar Mills } 158*c6d7a45dSGunnar Mills }, 159*c6d7a45dSGunnar Mills "type": "object", 160*c6d7a45dSGunnar Mills "versionAdded": "v1_13_0" 161*c6d7a45dSGunnar Mills }, 162*c6d7a45dSGunnar Mills "GenerateSecretKeyResponse": { 163*c6d7a45dSGunnar Mills "additionalProperties": false, 164*c6d7a45dSGunnar Mills "description": "The response body for the `GenerateSecretKey` action.", 165*c6d7a45dSGunnar Mills "longDescription": "This type shall contain the properties found in the response body for the `GenerateSecretKey` action.", 166*c6d7a45dSGunnar Mills "patternProperties": { 167*c6d7a45dSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 168*c6d7a45dSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 169*c6d7a45dSGunnar Mills "type": [ 170*c6d7a45dSGunnar Mills "array", 171*c6d7a45dSGunnar Mills "boolean", 172*c6d7a45dSGunnar Mills "integer", 173*c6d7a45dSGunnar Mills "number", 174*c6d7a45dSGunnar Mills "null", 175*c6d7a45dSGunnar Mills "object", 176*c6d7a45dSGunnar Mills "string" 177*c6d7a45dSGunnar Mills ] 178*c6d7a45dSGunnar Mills } 179*c6d7a45dSGunnar Mills }, 180*c6d7a45dSGunnar Mills "properties": { 181*c6d7a45dSGunnar Mills "SecretKey": { 182*c6d7a45dSGunnar Mills "description": "The secret key generated for Time-based One-Time Password (TOTP) multi-factor authentication.", 183*c6d7a45dSGunnar Mills "longDescription": "This property shall contain secret key generated for RFC6238-defined Time-based One-Time Password (TOTP) multi-factor authentication. Clients shall retain the value of this property to generate tokens for future session creation requests.", 184*c6d7a45dSGunnar Mills "readonly": true, 185*c6d7a45dSGunnar Mills "type": "string", 186*c6d7a45dSGunnar Mills "versionAdded": "v1_13_0" 187*c6d7a45dSGunnar Mills } 188*c6d7a45dSGunnar Mills }, 189*c6d7a45dSGunnar Mills "type": "object" 190*c6d7a45dSGunnar Mills }, 191*c6d7a45dSGunnar Mills "Links": { 192*c6d7a45dSGunnar Mills "additionalProperties": false, 193*c6d7a45dSGunnar Mills "description": "The links to other resources that are related to this resource.", 194*c6d7a45dSGunnar Mills "longDescription": "This Redfish Specification-described type shall contain links to resources that are related to but are not contained by, or subordinate to, this resource.", 195*c6d7a45dSGunnar Mills "patternProperties": { 196*c6d7a45dSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 197*c6d7a45dSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 198*c6d7a45dSGunnar Mills "type": [ 199*c6d7a45dSGunnar Mills "array", 200*c6d7a45dSGunnar Mills "boolean", 201*c6d7a45dSGunnar Mills "integer", 202*c6d7a45dSGunnar Mills "number", 203*c6d7a45dSGunnar Mills "null", 204*c6d7a45dSGunnar Mills "object", 205*c6d7a45dSGunnar Mills "string" 206*c6d7a45dSGunnar Mills ] 207*c6d7a45dSGunnar Mills } 208*c6d7a45dSGunnar Mills }, 209*c6d7a45dSGunnar Mills "properties": { 210*c6d7a45dSGunnar Mills "Oem": { 211*c6d7a45dSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/Resource.json#/definitions/Oem", 212*c6d7a45dSGunnar Mills "description": "The OEM extension property.", 213*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the OEM extensions. All values for properties contained in this object shall conform to the Redfish Specification-described requirements." 214*c6d7a45dSGunnar Mills }, 215*c6d7a45dSGunnar Mills "Role": { 216*c6d7a45dSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/Role.json#/definitions/Role", 217*c6d7a45dSGunnar Mills "description": "The link to the Redfish role that defines the privileges for this account.", 218*c6d7a45dSGunnar Mills "longDescription": "This property shall contain a link to a resource of type `Role`, and should link to the resource identified by the `RoleId` property.", 219*c6d7a45dSGunnar Mills "readonly": true 220*c6d7a45dSGunnar Mills } 221*c6d7a45dSGunnar Mills }, 222*c6d7a45dSGunnar Mills "type": "object" 223*c6d7a45dSGunnar Mills }, 224*c6d7a45dSGunnar Mills "ManagerAccount": { 225*c6d7a45dSGunnar Mills "additionalProperties": false, 226*c6d7a45dSGunnar Mills "description": "The `ManagerAccount` schema defines the user accounts that are owned by a manager. Changes to a manager account might affect the current Redfish service connection if this manager is responsible for the Redfish service.", 227*c6d7a45dSGunnar Mills "longDescription": "This resource shall represent a user account for the manager in a Redfish implementation. The account shall indicate the allowed access to one of more services in the manager.", 228*c6d7a45dSGunnar Mills "patternProperties": { 229*c6d7a45dSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 230*c6d7a45dSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 231*c6d7a45dSGunnar Mills "type": [ 232*c6d7a45dSGunnar Mills "array", 233*c6d7a45dSGunnar Mills "boolean", 234*c6d7a45dSGunnar Mills "integer", 235*c6d7a45dSGunnar Mills "number", 236*c6d7a45dSGunnar Mills "null", 237*c6d7a45dSGunnar Mills "object", 238*c6d7a45dSGunnar Mills "string" 239*c6d7a45dSGunnar Mills ] 240*c6d7a45dSGunnar Mills } 241*c6d7a45dSGunnar Mills }, 242*c6d7a45dSGunnar Mills "properties": { 243*c6d7a45dSGunnar Mills "@odata.context": { 244*c6d7a45dSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/odata-v4.json#/definitions/context" 245*c6d7a45dSGunnar Mills }, 246*c6d7a45dSGunnar Mills "@odata.etag": { 247*c6d7a45dSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/odata-v4.json#/definitions/etag" 248*c6d7a45dSGunnar Mills }, 249*c6d7a45dSGunnar Mills "@odata.id": { 250*c6d7a45dSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/odata-v4.json#/definitions/id" 251*c6d7a45dSGunnar Mills }, 252*c6d7a45dSGunnar Mills "@odata.type": { 253*c6d7a45dSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/odata-v4.json#/definitions/type" 254*c6d7a45dSGunnar Mills }, 255*c6d7a45dSGunnar Mills "AccountExpiration": { 256*c6d7a45dSGunnar Mills "description": "Indicates the date and time when this account expires. If `null`, the account never expires.", 257*c6d7a45dSGunnar Mills "format": "date-time", 258*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the date and time when this account expires. The service shall disable or delete an account that has expired. This property shall not apply to accounts created by the Redfish Host Interface Specification-defined credential bootstrapping. If the value is `null`, or the property is not present, the account never expires.", 259*c6d7a45dSGunnar Mills "readonly": false, 260*c6d7a45dSGunnar Mills "type": [ 261*c6d7a45dSGunnar Mills "string", 262*c6d7a45dSGunnar Mills "null" 263*c6d7a45dSGunnar Mills ], 264*c6d7a45dSGunnar Mills "versionAdded": "v1_8_0" 265*c6d7a45dSGunnar Mills }, 266*c6d7a45dSGunnar Mills "AccountTypes": { 267*c6d7a45dSGunnar Mills "description": "The list of services in the manager that the account is allowed to access.", 268*c6d7a45dSGunnar Mills "items": { 269*c6d7a45dSGunnar Mills "anyOf": [ 270*c6d7a45dSGunnar Mills { 271*c6d7a45dSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/ManagerAccount.json#/definitions/AccountTypes" 272*c6d7a45dSGunnar Mills }, 273*c6d7a45dSGunnar Mills { 274*c6d7a45dSGunnar Mills "type": "null" 275*c6d7a45dSGunnar Mills } 276*c6d7a45dSGunnar Mills ] 277*c6d7a45dSGunnar Mills }, 278*c6d7a45dSGunnar Mills "longDescription": "This property shall contain an array of the various manager services that the account is allowed to access. This shall not include functionality for receiving events or other notifications. If this property is not provided by the client, the default value shall be an array that contains the value `Redfish`. The service may add additional values when this property is set or updated if allowed by the value of the `StrictAccountTypes` property.", 279*c6d7a45dSGunnar Mills "readonly": false, 280*c6d7a45dSGunnar Mills "type": "array", 281*c6d7a45dSGunnar Mills "versionAdded": "v1_4_0" 282*c6d7a45dSGunnar Mills }, 283*c6d7a45dSGunnar Mills "Actions": { 284*c6d7a45dSGunnar Mills "$ref": "#/definitions/Actions", 285*c6d7a45dSGunnar Mills "description": "The available actions for this resource.", 286*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the available actions for this resource.", 287*c6d7a45dSGunnar Mills "versionAdded": "v1_1_0" 288*c6d7a45dSGunnar Mills }, 289*c6d7a45dSGunnar Mills "Certificates": { 290*c6d7a45dSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/CertificateCollection.json#/definitions/CertificateCollection", 291*c6d7a45dSGunnar Mills "description": "The link to a collection of user identity certificates for this account.", 292*c6d7a45dSGunnar Mills "longDescription": "This property shall contain a link to a resource collection of type `CertificateCollection` that represents the user identity certificates for this account.", 293*c6d7a45dSGunnar Mills "readonly": true, 294*c6d7a45dSGunnar Mills "versionAdded": "v1_2_0" 295*c6d7a45dSGunnar Mills }, 296*c6d7a45dSGunnar Mills "Description": { 297*c6d7a45dSGunnar Mills "anyOf": [ 298*c6d7a45dSGunnar Mills { 299*c6d7a45dSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/Resource.json#/definitions/Description" 300*c6d7a45dSGunnar Mills }, 301*c6d7a45dSGunnar Mills { 302*c6d7a45dSGunnar Mills "type": "null" 303*c6d7a45dSGunnar Mills } 304*c6d7a45dSGunnar Mills ], 305*c6d7a45dSGunnar Mills "readonly": true 306*c6d7a45dSGunnar Mills }, 307*c6d7a45dSGunnar Mills "EmailAddress": { 308*c6d7a45dSGunnar Mills "description": "The email address associated with this account.", 309*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the email address associated with this account.", 310*c6d7a45dSGunnar Mills "readonly": false, 311*c6d7a45dSGunnar Mills "type": [ 312*c6d7a45dSGunnar Mills "string", 313*c6d7a45dSGunnar Mills "null" 314*c6d7a45dSGunnar Mills ], 315*c6d7a45dSGunnar Mills "versionAdded": "v1_11_0" 316*c6d7a45dSGunnar Mills }, 317*c6d7a45dSGunnar Mills "Enabled": { 318*c6d7a45dSGunnar Mills "description": "An indication of whether an account is enabled. An administrator can disable it without deleting the user information. If `true`, the account is enabled and the user can log in. If `false`, the account is disabled and, in the future, the user cannot log in.", 319*c6d7a45dSGunnar Mills "longDescription": "This property shall indicate whether an account is enabled. If `true`, the account is enabled and the user can log in. If `false`, the account is disabled and, in the future, the user cannot log in.", 320*c6d7a45dSGunnar Mills "readonly": false, 321*c6d7a45dSGunnar Mills "type": "boolean" 322*c6d7a45dSGunnar Mills }, 323*c6d7a45dSGunnar Mills "HostBootstrapAccount": { 324*c6d7a45dSGunnar Mills "description": "An indication of whether this account is a bootstrap account for the host interface.", 325*c6d7a45dSGunnar Mills "longDescription": "This property shall indicate whether this account is a bootstrap account created by the Redfish Host Interface Specification-defined credential bootstrapping.", 326*c6d7a45dSGunnar Mills "readonly": true, 327*c6d7a45dSGunnar Mills "type": "boolean", 328*c6d7a45dSGunnar Mills "versionAdded": "v1_8_0" 329*c6d7a45dSGunnar Mills }, 330*c6d7a45dSGunnar Mills "Id": { 331*c6d7a45dSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/Resource.json#/definitions/Id", 332*c6d7a45dSGunnar Mills "readonly": true 333*c6d7a45dSGunnar Mills }, 334*c6d7a45dSGunnar Mills "Keys": { 335*c6d7a45dSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/KeyCollection.json#/definitions/KeyCollection", 336*c6d7a45dSGunnar Mills "description": "The link to the collection of keys that can be used to authenticate this account. For example, an SSH public key could be added to this collection to allow for SSH public key authentication.", 337*c6d7a45dSGunnar Mills "longDescription": "This property shall contain a link to a resource collection of type `KeyCollection` that contains the keys that can be used to authenticate this account.", 338*c6d7a45dSGunnar Mills "readonly": true, 339*c6d7a45dSGunnar Mills "versionAdded": "v1_9_0" 340*c6d7a45dSGunnar Mills }, 341*c6d7a45dSGunnar Mills "Links": { 342*c6d7a45dSGunnar Mills "$ref": "#/definitions/Links", 343*c6d7a45dSGunnar Mills "description": "The links to other resources that are related to this resource.", 344*c6d7a45dSGunnar Mills "longDescription": "This property shall contain links to resources that are related to but are not contained by, or subordinate to, this resource." 345*c6d7a45dSGunnar Mills }, 346*c6d7a45dSGunnar Mills "Locked": { 347*c6d7a45dSGunnar Mills "description": "An indication of whether the account service automatically locked the account because the lockout threshold was exceeded. To manually unlock the account before the lockout duration period, an administrator can change the property to `false` to clear the lockout condition.", 348*c6d7a45dSGunnar Mills "longDescription": "This property shall indicate whether the account service automatically locked the account because the `AccountLockoutThreshold` was exceeded. To manually unlock the account before the lockout duration period, an administrator shall be able to change the property to `false` to clear the lockout condition.", 349*c6d7a45dSGunnar Mills "readonly": false, 350*c6d7a45dSGunnar Mills "type": "boolean" 351*c6d7a45dSGunnar Mills }, 352*c6d7a45dSGunnar Mills "MFABypass": { 353*c6d7a45dSGunnar Mills "anyOf": [ 354*c6d7a45dSGunnar Mills { 355*c6d7a45dSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/AccountService.json#/definitions/MFABypass" 356*c6d7a45dSGunnar Mills }, 357*c6d7a45dSGunnar Mills { 358*c6d7a45dSGunnar Mills "type": "null" 359*c6d7a45dSGunnar Mills } 360*c6d7a45dSGunnar Mills ], 361*c6d7a45dSGunnar Mills "description": "The multi-factor authentication bypass settings for this account.", 362*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the multi-factor authentication bypass settings for this account.", 363*c6d7a45dSGunnar Mills "versionAdded": "v1_10_0" 364*c6d7a45dSGunnar Mills }, 365*c6d7a45dSGunnar Mills "Name": { 366*c6d7a45dSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/Resource.json#/definitions/Name", 367*c6d7a45dSGunnar Mills "readonly": true 368*c6d7a45dSGunnar Mills }, 369*c6d7a45dSGunnar Mills "OEMAccountTypes": { 370*c6d7a45dSGunnar Mills "description": "The OEM account types.", 371*c6d7a45dSGunnar Mills "items": { 372*c6d7a45dSGunnar Mills "type": [ 373*c6d7a45dSGunnar Mills "string", 374*c6d7a45dSGunnar Mills "null" 375*c6d7a45dSGunnar Mills ] 376*c6d7a45dSGunnar Mills }, 377*c6d7a45dSGunnar Mills "longDescription": "This property shall contain an array of the OEM account types for this account. This property shall be valid when `AccountTypes` contains `OEM`.", 378*c6d7a45dSGunnar Mills "readonly": false, 379*c6d7a45dSGunnar Mills "type": "array", 380*c6d7a45dSGunnar Mills "versionAdded": "v1_4_0" 381*c6d7a45dSGunnar Mills }, 382*c6d7a45dSGunnar Mills "Oem": { 383*c6d7a45dSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/Resource.json#/definitions/Oem", 384*c6d7a45dSGunnar Mills "description": "The OEM extension property.", 385*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the OEM extensions. All values for properties that this object contains shall conform to the Redfish Specification-described requirements." 386*c6d7a45dSGunnar Mills }, 387*c6d7a45dSGunnar Mills "OneTimePasscodeDeliveryAddress": { 388*c6d7a45dSGunnar Mills "description": "The address used to receive one-time passcode messages for multi-factor authentication.", 389*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the contact address for receiving one-time passcode messages for multi-factor authentication for this account when the `Enabled` property in the `OneTimePasscode` property in `AccountService` resource contains `true`. This is typically the contact email address associated with the account, but may be a separate, relay email address for delivery via SMS or other contact method.", 390*c6d7a45dSGunnar Mills "readonly": false, 391*c6d7a45dSGunnar Mills "type": [ 392*c6d7a45dSGunnar Mills "string", 393*c6d7a45dSGunnar Mills "null" 394*c6d7a45dSGunnar Mills ], 395*c6d7a45dSGunnar Mills "versionAdded": "v1_11_0" 396*c6d7a45dSGunnar Mills }, 397*c6d7a45dSGunnar Mills "Password": { 398*c6d7a45dSGunnar Mills "description": "The password. Use this property with a `PATCH` or `PUT` to write the password for the account. This property is `null` in responses.", 399*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the password for this account. The value shall be `null` in responses.", 400*c6d7a45dSGunnar Mills "readonly": false, 401*c6d7a45dSGunnar Mills "type": [ 402*c6d7a45dSGunnar Mills "string", 403*c6d7a45dSGunnar Mills "null" 404*c6d7a45dSGunnar Mills ], 405*c6d7a45dSGunnar Mills "writeOnly": true 406*c6d7a45dSGunnar Mills }, 407*c6d7a45dSGunnar Mills "PasswordChangeRequired": { 408*c6d7a45dSGunnar Mills "description": "An indication of whether the service requires that the password for this account be changed before further access to the account is allowed.", 409*c6d7a45dSGunnar Mills "longDescription": "This property shall indicate whether the service requires that the password for this account be changed before further access to the account is allowed. The implementation may deny access to the service if the password has not been changed. A manager account created with an initial `PasswordChangeRequired` value of `true` may force a password change before first access of the account. When the `Password` property for this account is updated, the service shall set this property to `false`.", 410*c6d7a45dSGunnar Mills "readonly": false, 411*c6d7a45dSGunnar Mills "type": [ 412*c6d7a45dSGunnar Mills "boolean", 413*c6d7a45dSGunnar Mills "null" 414*c6d7a45dSGunnar Mills ], 415*c6d7a45dSGunnar Mills "versionAdded": "v1_3_0" 416*c6d7a45dSGunnar Mills }, 417*c6d7a45dSGunnar Mills "PasswordExpiration": { 418*c6d7a45dSGunnar Mills "description": "Indicates the date and time when this account password expires. If `null`, the account password never expires.", 419*c6d7a45dSGunnar Mills "format": "date-time", 420*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the date and time when this account password expires. If the value is `null`, the account password never expires. If provided during account creation or password modification, this value shall override the value of the `PasswordExpirationDays` property in the `AccountService` resource.", 421*c6d7a45dSGunnar Mills "readonly": false, 422*c6d7a45dSGunnar Mills "type": [ 423*c6d7a45dSGunnar Mills "string", 424*c6d7a45dSGunnar Mills "null" 425*c6d7a45dSGunnar Mills ], 426*c6d7a45dSGunnar Mills "versionAdded": "v1_6_0" 427*c6d7a45dSGunnar Mills }, 428*c6d7a45dSGunnar Mills "PhoneNumber": { 429*c6d7a45dSGunnar Mills "description": "The contact phone number associated with this account.", 430*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the contact phone number associated with this account.", 431*c6d7a45dSGunnar Mills "readonly": false, 432*c6d7a45dSGunnar Mills "type": [ 433*c6d7a45dSGunnar Mills "string", 434*c6d7a45dSGunnar Mills "null" 435*c6d7a45dSGunnar Mills ], 436*c6d7a45dSGunnar Mills "versionAdded": "v1_11_0" 437*c6d7a45dSGunnar Mills }, 438*c6d7a45dSGunnar Mills "RoleId": { 439*c6d7a45dSGunnar Mills "description": "The role for this account.", 440*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the `RoleId` of the role resource configured for this account. The service shall reject `POST`, `PATCH`, or `PUT` operations that provide a `RoleId` that does not exist by returning the HTTP `400 Bad Request` status code.", 441*c6d7a45dSGunnar Mills "readonly": false, 442*c6d7a45dSGunnar Mills "type": "string" 443*c6d7a45dSGunnar Mills }, 444*c6d7a45dSGunnar Mills "SNMP": { 445*c6d7a45dSGunnar Mills "anyOf": [ 446*c6d7a45dSGunnar Mills { 447*c6d7a45dSGunnar Mills "$ref": "#/definitions/SNMPUserInfo" 448*c6d7a45dSGunnar Mills }, 449*c6d7a45dSGunnar Mills { 450*c6d7a45dSGunnar Mills "type": "null" 451*c6d7a45dSGunnar Mills } 452*c6d7a45dSGunnar Mills ], 453*c6d7a45dSGunnar Mills "description": "The SNMP settings for this account.", 454*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the SNMP settings for this account when `AccountTypes` contains `SNMP`.", 455*c6d7a45dSGunnar Mills "versionAdded": "v1_4_0" 456*c6d7a45dSGunnar Mills }, 457*c6d7a45dSGunnar Mills "SecretKeySet": { 458*c6d7a45dSGunnar Mills "description": "Indicates if the secret key for Time-based One-Time Password (TOTP) multi-factor authentication is set.", 459*c6d7a45dSGunnar Mills "longDescription": "This property shall indicate if the secret key for RFC6238-defined Time-based One-Time Password (TOTP) multi-factor authentication is set.", 460*c6d7a45dSGunnar Mills "readonly": true, 461*c6d7a45dSGunnar Mills "type": "boolean", 462*c6d7a45dSGunnar Mills "versionAdded": "v1_13_0" 463*c6d7a45dSGunnar Mills }, 464*c6d7a45dSGunnar Mills "StrictAccountTypes": { 465*c6d7a45dSGunnar Mills "description": "Indicates if the service needs to use the account types exactly as specified when the account is created or updated.", 466*c6d7a45dSGunnar Mills "longDescription": "This property shall indicate if the service needs to use the value of `AccountTypes` and `OEMAccountTypes` values exactly as specified. A `true` value shall indicate the service needs to either accept the value without changes or reject the request. A `false` value shall indicate the service may add additional `AccountTypes` and `OEMAccountTypes` values as needed to support limitations it has in separately controlling access to individual services. If this property is not present, the value shall be assumed to be `false`. An update of the service can cause account types to be added to or removed from the `AccountTypes` and `OEMAccountTypes` properties, regardless of the value of this property. After a service update, clients should inspect all accounts where the value of this property is `true` and perform maintenance as needed.", 467*c6d7a45dSGunnar Mills "readonly": false, 468*c6d7a45dSGunnar Mills "type": [ 469*c6d7a45dSGunnar Mills "boolean", 470*c6d7a45dSGunnar Mills "null" 471*c6d7a45dSGunnar Mills ], 472*c6d7a45dSGunnar Mills "versionAdded": "v1_7_0" 473*c6d7a45dSGunnar Mills }, 474*c6d7a45dSGunnar Mills "UserName": { 475*c6d7a45dSGunnar Mills "description": "The username for the account.", 476*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the username for this account.", 477*c6d7a45dSGunnar Mills "readonly": false, 478*c6d7a45dSGunnar Mills "type": "string" 479*c6d7a45dSGunnar Mills } 480*c6d7a45dSGunnar Mills }, 481*c6d7a45dSGunnar Mills "required": [ 482*c6d7a45dSGunnar Mills "@odata.id", 483*c6d7a45dSGunnar Mills "@odata.type", 484*c6d7a45dSGunnar Mills "Id", 485*c6d7a45dSGunnar Mills "Name", 486*c6d7a45dSGunnar Mills "AccountTypes" 487*c6d7a45dSGunnar Mills ], 488*c6d7a45dSGunnar Mills "requiredOnCreate": [ 489*c6d7a45dSGunnar Mills "Password", 490*c6d7a45dSGunnar Mills "UserName", 491*c6d7a45dSGunnar Mills "RoleId" 492*c6d7a45dSGunnar Mills ], 493*c6d7a45dSGunnar Mills "type": "object" 494*c6d7a45dSGunnar Mills }, 495*c6d7a45dSGunnar Mills "OemActions": { 496*c6d7a45dSGunnar Mills "additionalProperties": true, 497*c6d7a45dSGunnar Mills "description": "The available OEM-specific actions for this resource.", 498*c6d7a45dSGunnar Mills "longDescription": "This type shall contain the available OEM-specific actions for this resource.", 499*c6d7a45dSGunnar Mills "patternProperties": { 500*c6d7a45dSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 501*c6d7a45dSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 502*c6d7a45dSGunnar Mills "type": [ 503*c6d7a45dSGunnar Mills "array", 504*c6d7a45dSGunnar Mills "boolean", 505*c6d7a45dSGunnar Mills "integer", 506*c6d7a45dSGunnar Mills "number", 507*c6d7a45dSGunnar Mills "null", 508*c6d7a45dSGunnar Mills "object", 509*c6d7a45dSGunnar Mills "string" 510*c6d7a45dSGunnar Mills ] 511*c6d7a45dSGunnar Mills } 512*c6d7a45dSGunnar Mills }, 513*c6d7a45dSGunnar Mills "properties": {}, 514*c6d7a45dSGunnar Mills "type": "object" 515*c6d7a45dSGunnar Mills }, 516*c6d7a45dSGunnar Mills "SNMPAuthenticationProtocols": { 517*c6d7a45dSGunnar Mills "enum": [ 518*c6d7a45dSGunnar Mills "None", 519*c6d7a45dSGunnar Mills "HMAC_MD5", 520*c6d7a45dSGunnar Mills "HMAC_SHA96", 521*c6d7a45dSGunnar Mills "HMAC128_SHA224", 522*c6d7a45dSGunnar Mills "HMAC192_SHA256", 523*c6d7a45dSGunnar Mills "HMAC256_SHA384", 524*c6d7a45dSGunnar Mills "HMAC384_SHA512" 525*c6d7a45dSGunnar Mills ], 526*c6d7a45dSGunnar Mills "enumDescriptions": { 527*c6d7a45dSGunnar Mills "HMAC128_SHA224": "HMAC-128-SHA-224 authentication.", 528*c6d7a45dSGunnar Mills "HMAC192_SHA256": "HMAC-192-SHA-256 authentication.", 529*c6d7a45dSGunnar Mills "HMAC256_SHA384": "HMAC-256-SHA-384 authentication.", 530*c6d7a45dSGunnar Mills "HMAC384_SHA512": "HMAC-384-SHA-512 authentication.", 531*c6d7a45dSGunnar Mills "HMAC_MD5": "HMAC-MD5-96 authentication.", 532*c6d7a45dSGunnar Mills "HMAC_SHA96": "HMAC-SHA-96 authentication.", 533*c6d7a45dSGunnar Mills "None": "No authentication." 534*c6d7a45dSGunnar Mills }, 535*c6d7a45dSGunnar Mills "enumLongDescriptions": { 536*c6d7a45dSGunnar Mills "HMAC128_SHA224": "This value shall indicate authentication for SNMPv3 access conforms to the RFC7860-defined usmHMAC128SHA224AuthProtocol.", 537*c6d7a45dSGunnar Mills "HMAC192_SHA256": "This value shall indicate authentication for SNMPv3 access conforms to the RFC7860-defined usmHMAC192SHA256AuthProtocol.", 538*c6d7a45dSGunnar Mills "HMAC256_SHA384": "This value shall indicate authentication for SNMPv3 access conforms to the RFC7860-defined usmHMAC256SHA384AuthProtocol.", 539*c6d7a45dSGunnar Mills "HMAC384_SHA512": "This value shall indicate authentication for SNMPv3 access conforms to the RFC7860-defined usmHMAC384SHA512AuthProtocol.", 540*c6d7a45dSGunnar Mills "HMAC_MD5": "This value shall indicate authentication conforms to the RFC3414-defined HMAC-MD5-96 authentication protocol.", 541*c6d7a45dSGunnar Mills "HMAC_SHA96": "This value shall indicate authentication conforms to the RFC3414-defined HMAC-SHA-96 authentication protocol.", 542*c6d7a45dSGunnar Mills "None": "This value shall indicate authentication is not required." 543*c6d7a45dSGunnar Mills }, 544*c6d7a45dSGunnar Mills "enumVersionAdded": { 545*c6d7a45dSGunnar Mills "HMAC128_SHA224": "v1_7_0", 546*c6d7a45dSGunnar Mills "HMAC192_SHA256": "v1_7_0", 547*c6d7a45dSGunnar Mills "HMAC256_SHA384": "v1_7_0", 548*c6d7a45dSGunnar Mills "HMAC384_SHA512": "v1_7_0" 549*c6d7a45dSGunnar Mills }, 550*c6d7a45dSGunnar Mills "type": "string" 551*c6d7a45dSGunnar Mills }, 552*c6d7a45dSGunnar Mills "SNMPEncryptionProtocols": { 553*c6d7a45dSGunnar Mills "enum": [ 554*c6d7a45dSGunnar Mills "None", 555*c6d7a45dSGunnar Mills "CBC_DES", 556*c6d7a45dSGunnar Mills "CFB128_AES128", 557*c6d7a45dSGunnar Mills "CFB128_AES192", 558*c6d7a45dSGunnar Mills "CFB128_AES256" 559*c6d7a45dSGunnar Mills ], 560*c6d7a45dSGunnar Mills "enumDescriptions": { 561*c6d7a45dSGunnar Mills "CBC_DES": "CBC-DES encryption.", 562*c6d7a45dSGunnar Mills "CFB128_AES128": "CFB128-AES-128 encryption.", 563*c6d7a45dSGunnar Mills "CFB128_AES192": "CFB128-AES-192 encryption.", 564*c6d7a45dSGunnar Mills "CFB128_AES256": "CFB128-AES-256 encryption.", 565*c6d7a45dSGunnar Mills "None": "No encryption." 566*c6d7a45dSGunnar Mills }, 567*c6d7a45dSGunnar Mills "enumLongDescriptions": { 568*c6d7a45dSGunnar Mills "CBC_DES": "This value shall indicate encryption conforms to the RFC3414-defined CBC-DES encryption protocol.", 569*c6d7a45dSGunnar Mills "CFB128_AES128": "This value shall indicate encryption conforms to the RFC3826-defined CFB128-AES-128 encryption protocol.", 570*c6d7a45dSGunnar Mills "CFB128_AES192": "This value shall indicate encryption conforms to the CFB128-AES-192 encryption protocol, extended from RFC3826.", 571*c6d7a45dSGunnar Mills "CFB128_AES256": "This value shall indicate encryption conforms to the CFB128-AES-256 encryption protocol, extended from RFC3826.", 572*c6d7a45dSGunnar Mills "None": "This value shall indicate there is no encryption." 573*c6d7a45dSGunnar Mills }, 574*c6d7a45dSGunnar Mills "enumVersionAdded": { 575*c6d7a45dSGunnar Mills "CFB128_AES192": "v1_12_0", 576*c6d7a45dSGunnar Mills "CFB128_AES256": "v1_12_0" 577*c6d7a45dSGunnar Mills }, 578*c6d7a45dSGunnar Mills "type": "string" 579*c6d7a45dSGunnar Mills }, 580*c6d7a45dSGunnar Mills "SNMPUserInfo": { 581*c6d7a45dSGunnar Mills "additionalProperties": false, 582*c6d7a45dSGunnar Mills "description": "The SNMP settings for an account.", 583*c6d7a45dSGunnar Mills "longDescription": "This object shall contain the SNMP settings for an account.", 584*c6d7a45dSGunnar Mills "patternProperties": { 585*c6d7a45dSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 586*c6d7a45dSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 587*c6d7a45dSGunnar Mills "type": [ 588*c6d7a45dSGunnar Mills "array", 589*c6d7a45dSGunnar Mills "boolean", 590*c6d7a45dSGunnar Mills "integer", 591*c6d7a45dSGunnar Mills "number", 592*c6d7a45dSGunnar Mills "null", 593*c6d7a45dSGunnar Mills "object", 594*c6d7a45dSGunnar Mills "string" 595*c6d7a45dSGunnar Mills ] 596*c6d7a45dSGunnar Mills } 597*c6d7a45dSGunnar Mills }, 598*c6d7a45dSGunnar Mills "properties": { 599*c6d7a45dSGunnar Mills "AuthenticationKey": { 600*c6d7a45dSGunnar Mills "description": "The secret authentication key for SNMPv3.", 601*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the key for SNMPv3 authentication. The value shall be `null` in responses. This property accepts a passphrase or a hex-encoded key. If the string starts with `Passphrase:`, the remainder of the string shall be the passphrase and shall be converted to the key as described in the 'Password to Key Algorithm' section of RFC3414. If the string starts with `Hex:`, then the remainder of the string shall be the key encoded in hexadecimal notation. If the string starts with neither, the full string shall be a passphrase and shall be converted to the key as described in the 'Password to Key Algorithm' section of RFC3414.", 602*c6d7a45dSGunnar Mills "pattern": "(^[ -~]+$)|(^Passphrase:[ -~]+$)|(^Hex:[0-9A-Fa-f]{24,96})|(^\\*+$)", 603*c6d7a45dSGunnar Mills "readonly": false, 604*c6d7a45dSGunnar Mills "type": [ 605*c6d7a45dSGunnar Mills "string", 606*c6d7a45dSGunnar Mills "null" 607*c6d7a45dSGunnar Mills ], 608*c6d7a45dSGunnar Mills "versionAdded": "v1_4_0", 609*c6d7a45dSGunnar Mills "writeOnly": true 610*c6d7a45dSGunnar Mills }, 611*c6d7a45dSGunnar Mills "AuthenticationKeySet": { 612*c6d7a45dSGunnar Mills "description": "Indicates if the `AuthenticationKey` property is set.", 613*c6d7a45dSGunnar Mills "longDescription": "This property shall contain `true` if a valid value was provided for the `AuthenticationKey` property. Otherwise, the property shall contain `false`.", 614*c6d7a45dSGunnar Mills "readonly": true, 615*c6d7a45dSGunnar Mills "type": "boolean", 616*c6d7a45dSGunnar Mills "versionAdded": "v1_5_0" 617*c6d7a45dSGunnar Mills }, 618*c6d7a45dSGunnar Mills "AuthenticationProtocol": { 619*c6d7a45dSGunnar Mills "anyOf": [ 620*c6d7a45dSGunnar Mills { 621*c6d7a45dSGunnar Mills "$ref": "#/definitions/SNMPAuthenticationProtocols" 622*c6d7a45dSGunnar Mills }, 623*c6d7a45dSGunnar Mills { 624*c6d7a45dSGunnar Mills "type": "null" 625*c6d7a45dSGunnar Mills } 626*c6d7a45dSGunnar Mills ], 627*c6d7a45dSGunnar Mills "description": "The authentication protocol for SNMPv3.", 628*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the SNMPv3 authentication protocol.", 629*c6d7a45dSGunnar Mills "readonly": false, 630*c6d7a45dSGunnar Mills "versionAdded": "v1_4_0" 631*c6d7a45dSGunnar Mills }, 632*c6d7a45dSGunnar Mills "EncryptionKey": { 633*c6d7a45dSGunnar Mills "description": "The secret encryption key used in SNMPv3.", 634*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the key for SNMPv3 encryption. The value shall be `null` in responses. This property accepts a passphrase or a hex-encoded key. If the string starts with `Passphrase:`, the remainder of the string shall be the passphrase and shall be converted to the key as described in the 'Password to Key Algorithm' section of RFC3414. If the string starts with `Hex:`, then the remainder of the string shall be the key encoded in hexadecimal notation. If the string starts with neither, the full string shall be a passphrase and shall be converted to the key as described in the 'Password to Key Algorithm' section of RFC3414.", 635*c6d7a45dSGunnar Mills "pattern": "(^[ -~]+$)|(^Passphrase:[ -~]+$)|(^Hex:[0-9A-Fa-f]{16,64}$)|(^\\*+$)", 636*c6d7a45dSGunnar Mills "readonly": false, 637*c6d7a45dSGunnar Mills "type": [ 638*c6d7a45dSGunnar Mills "string", 639*c6d7a45dSGunnar Mills "null" 640*c6d7a45dSGunnar Mills ], 641*c6d7a45dSGunnar Mills "versionAdded": "v1_4_0", 642*c6d7a45dSGunnar Mills "writeOnly": true 643*c6d7a45dSGunnar Mills }, 644*c6d7a45dSGunnar Mills "EncryptionKeySet": { 645*c6d7a45dSGunnar Mills "description": "Indicates if the `EncryptionKey` property is set.", 646*c6d7a45dSGunnar Mills "longDescription": "This property shall contain `true` if a valid value was provided for the `EncryptionKey` property. Otherwise, the property shall contain `false`.", 647*c6d7a45dSGunnar Mills "readonly": true, 648*c6d7a45dSGunnar Mills "type": "boolean", 649*c6d7a45dSGunnar Mills "versionAdded": "v1_5_0" 650*c6d7a45dSGunnar Mills }, 651*c6d7a45dSGunnar Mills "EncryptionProtocol": { 652*c6d7a45dSGunnar Mills "anyOf": [ 653*c6d7a45dSGunnar Mills { 654*c6d7a45dSGunnar Mills "$ref": "#/definitions/SNMPEncryptionProtocols" 655*c6d7a45dSGunnar Mills }, 656*c6d7a45dSGunnar Mills { 657*c6d7a45dSGunnar Mills "type": "null" 658*c6d7a45dSGunnar Mills } 659*c6d7a45dSGunnar Mills ], 660*c6d7a45dSGunnar Mills "description": "The encryption protocol for SNMPv3.", 661*c6d7a45dSGunnar Mills "longDescription": "This property shall contain the SNMPv3 encryption protocol.", 662*c6d7a45dSGunnar Mills "readonly": false, 663*c6d7a45dSGunnar Mills "versionAdded": "v1_4_0" 664*c6d7a45dSGunnar Mills } 665*c6d7a45dSGunnar Mills }, 666*c6d7a45dSGunnar Mills "type": "object" 667*c6d7a45dSGunnar Mills }, 668*c6d7a45dSGunnar Mills "VerifyTimeBasedOneTimePassword": { 669*c6d7a45dSGunnar Mills "additionalProperties": false, 670*c6d7a45dSGunnar Mills "description": "This action verifies a user-provided Time-based One-Time Password (TOTP). This is to ensure the client's copy of the secret key is aligned with the secret key stored by the service.", 671*c6d7a45dSGunnar Mills "longDescription": "This action shall verify a user-provided RFC6238-defined Time-based One-Time Password (TOTP).", 672*c6d7a45dSGunnar Mills "parameters": { 673*c6d7a45dSGunnar Mills "TimeBasedOneTimePassword": { 674*c6d7a45dSGunnar Mills "description": "The Time-based One-Time Password (TOTP) to verify.", 675*c6d7a45dSGunnar Mills "longDescription": "This parameter shall contain the Time-based One-Time Password (TOTP) to verify. If the Time-based One-Time Password (TOTP) is not valid, the service shall return the HTTP `400 Bad Request` status code.", 676*c6d7a45dSGunnar Mills "requiredParameter": true, 677*c6d7a45dSGunnar Mills "type": "string" 678*c6d7a45dSGunnar Mills } 679*c6d7a45dSGunnar Mills }, 680*c6d7a45dSGunnar Mills "patternProperties": { 681*c6d7a45dSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 682*c6d7a45dSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 683*c6d7a45dSGunnar Mills "type": [ 684*c6d7a45dSGunnar Mills "array", 685*c6d7a45dSGunnar Mills "boolean", 686*c6d7a45dSGunnar Mills "integer", 687*c6d7a45dSGunnar Mills "number", 688*c6d7a45dSGunnar Mills "null", 689*c6d7a45dSGunnar Mills "object", 690*c6d7a45dSGunnar Mills "string" 691*c6d7a45dSGunnar Mills ] 692*c6d7a45dSGunnar Mills } 693*c6d7a45dSGunnar Mills }, 694*c6d7a45dSGunnar Mills "properties": { 695*c6d7a45dSGunnar Mills "target": { 696*c6d7a45dSGunnar Mills "description": "Link to invoke action", 697*c6d7a45dSGunnar Mills "format": "uri-reference", 698*c6d7a45dSGunnar Mills "type": "string" 699*c6d7a45dSGunnar Mills }, 700*c6d7a45dSGunnar Mills "title": { 701*c6d7a45dSGunnar Mills "description": "Friendly action name", 702*c6d7a45dSGunnar Mills "type": "string" 703*c6d7a45dSGunnar Mills } 704*c6d7a45dSGunnar Mills }, 705*c6d7a45dSGunnar Mills "type": "object", 706*c6d7a45dSGunnar Mills "versionAdded": "v1_13_0" 707*c6d7a45dSGunnar Mills } 708*c6d7a45dSGunnar Mills }, 709*c6d7a45dSGunnar Mills "language": "en", 710*c6d7a45dSGunnar Mills "owningEntity": "DMTF", 711*c6d7a45dSGunnar Mills "release": "2025.2", 712*c6d7a45dSGunnar Mills "title": "#ManagerAccount.v1_14_0.ManagerAccount" 713*c6d7a45dSGunnar Mills}