Reference Guide

ManualsBrandsDell ManualsAccess PlatformsBrocade G620

171

172

173

174

175

176

177

178

179

180

dn: cn=Manager,dc=mybrocade,dc=com

objectClass: organizationalRole

cn: Manager

description: Directory Manager

2. Enter the ldapadd command to add the contents of the .ldif file to the Directory, where test.ldif is the file you created in step 1.

switch:admin> ldapadd -D cn=Manager,dc=mybrocade,dc=com -x -w secret -f test.ldif

Assigning a user to a group

Before you can assign a user to a group, the memberOf overlay must be added to the slapd.conf file. Refer to Enabling group

membership on page 177 for details.

1. In a .ldif file, create a "groupOfNames" objectClass entry with the name of the group, for example, "admin," to create a group.

2. Set a "member" attribute for the group instance to identify the member, as in this example:

"cn=Sachin,cn=Users,dc=mybrocade,dc=com"

Automatically, the "memberOf" attribute of the entry Sachin will have the value "cn=admin,ou=groups,dc=mybrocade,dc=com",

which assigns Sachin to the admin group.

3. Enter the ldapadd command.

For example, the .ldif file might contain information similar to the following:

#Groups in organization

dn: ou=groups,dc=mybrocade,dc=com

objectclass:organizationalunit

ou: groups

description: generic groups branch

dn: cn=admin,ou=groups,dc=mybrocade,dc=com

objectclass: groupofnames

cn: admin

description: Members having admin permission

#Add members for admin group

member: cn=sachin,cn=Users,dc=mybrocade,dc=com

Assigning the LDAP role to a switch role

Use the ldapCfg --maprole command to map LDAP server permissions to one of the default roles available on a switch.

Modifying an entry

To modify a directory entry, perform the following steps.

1. Create a .ldif file containing the information to be modified.

2. Enter the ldapmodify command with the -f option specifying the .ldif file you created in step 1.

to delete a user attribute

Adding a Virtual Fabric list

Use the brcdAdVfData attribute to map a role to a Virtual Fabric. To perform this operation, you must modify the schema to include the

definition of the brcdAdVfData attribute and the definition of a user class that can use this attribute. You can then add this attribute to

user entries in the LDAP directory.

1. In a schema file, assign the brcdAdVfData attribute to a user class.

Managing User Accounts

Brocade Fabric OS Administration Guide, 8.0.1

178 53-1004111-02