Configuring authentication from the gui – HP StoreAll Storage User Manual

Page 60

Advertising
background image

Required attributes for Samba/POSIX templates

Description

Value

Nonvirtual attribute
name

Helps identify the configuration version uploaded. Potentially
used for reports, audit history, and troubleshooting.

Any arbitrary string

VERSION

A FQDN or IP. Typically, it is a front-ended switch or an IP
LDAP proxy/balancer name/address for multiple backend
high-availability LDAP servers.

IP Address string

LDAPServerHost

The LDAP OU (organizational unit) to which configuration
entries can be written. This OU must exist on the server and
must be readable and writable using LDAPWriteDN.

Writable OU name string

LdapConfigurationOU

Limited write DN credentials. HP recommends that you do not
use cn=Manager credentials. Instead, use an account DN with

DN name string

LdapWriteDN

very restricted write permissions to the LdapConfigurationOU
and beneath.

Password for the LdapWriteDN account.

Unencrypted password string.
LDAP encrypts the string on
storage.

LDAPWritePassword

Supported schema for the OpenLDAP server.

Samba, posix, or user defined
schema

schematype

Run the configuration script on the remote LDAP server

The IBRIX gen_ldap-lwtools.sh script performs the configuration based on the copy of the
chosen schema template (UserConf.conf in the examples). Run the following command to
validate your changes:

sh /opt/likewise/bin/gen_ldap-lwtools.sh UserConf.conf –v

If the configuration looks okay, run the command with added security by removing all temporary
files:

sh /opt/likewise/bin/gen_ldap-lwtools.sh UserConf.conf -rm

If you need to troubleshoot the configuration, run the command as follows:

sh /opt/likewise/bin/gen_ldap-lwtools.sh UserConf.conf

Configure LDAP authentication on the cluster nodes

You can configure LDAP authentication from the GUI, as described in

“Configuring authentication

from the GUI” (page 60)

(recommended), or by using the ibrix_ldapconfig command (see

“Configuring LDAP” (page 69)

.

Configuring authentication from the GUI

Use the Authentication Wizard to perform the initial configuration or to modify it at a later time.
Select Cluster Configuration > File Sharing Authentication from the Navigator to open the File
Sharing Authentication Settings panel. This panel shows the current authentication configuration
on each server.

60

Configuring authentication for SMB, FTP, and HTTP

Advertising
Popular Brands
Popular manuals