Using the host access configuration option, Using ldap, Ldap server guidelines – HP StoreEver ESL G3 Tape Libraries User Manual

Using the Host Access Configuration option

To add devices to or remove devices from an existing group, or to select which ports the hosts will
use to access devices, use the Host Access Configuration option. To do so:
1.

Select Setup

→Secure Manager to display the Secure Manager Configuration Wizard.

2.

Click Next.

3.

Click the radio button to select Host Access Configuration.

4.

Click Next to display the Select the Group to configure screen.

5.

Select the Expand Tree box to list all items in the Access Group Hosts and Devices section of
the dialog box.

6.

Select the box corresponding to the Access Group to configure for host access.

7.

Click Next to display the Select the drives for host access dialog box which shows the current
settings.

8.

Select or clear the box or boxes in the Select column to indicate which drive or drives to
configure for host access.

9.

For each drive selected, also select the appropriate box in either the Port A or Port B columns
to indicate which port to use. (The default is Port A.)

10. Click Next to display the Select the partitions for host access dialog box.
11. Select or clear the box or boxes in the Select column to indicate which partitions to configure

for host access.

12. For each partition selected, also select the appropriate box in either the Port A or Port B

columns to indicate which port to use. (The default is Port A.)

13. Click Finish to update host access.
14. Click OK in the The Host Access was updated successfully dialog box.

Using LDAP

Lightweight Directory Access Protocol (LDAP) is the industry standard Internet protocol that provides
centralized user account management. This library supports the Microsoft Active Directory LDAP
server and user account information in the schema defined by RFC 2307. User password schemes
must be encrypted using UNIX crypt.

You can configure the Lightweight Directory Access Protocol (LDAP) settings any time after the
initial library configuration. Once you enable and configure LDAP, you can view your current LDAP
settings using the LDAP menu.

LDAP server guidelines

User account information is centralized and shared by different applications, simplifying user
account management tasks. Administrative users can add, delete, and modify only local user
account information.

User and group access

For LDAP accounts with user privileges, access to library partitions is determined by group
assignment on the LDAP server. LDAP accounts with administrative privileges have access to all
partitions and administrative functions and do not need to be assigned to partition-related groups
on the LDAP server. LDAP accounts with user privileges have read-only access basic library
information and cannot make library configuration changes.

LDAP accounts with administrative privileges have access to all partitions and administrative
functions and do not need to be assigned to partition-related groups on the LDAP server.

NOTE:

Usernames and group objects must be in LDAP Distinguished Names formats.

68

Modifying the library configuration