Administrator Guide
4. Click Congure External User Database in the NFS User Repository section. The Edit External User Database dialog box
appears.
5. Select LDAP.
6. In the Base DN eld, type an LDAP base distinguished name to represent where in the directory to begin searching for users.
The name is usually in this format:
dc=domain, dc=com.
7. In the LDAP Servers text eld, type the host name or IP address of an LDAP server and click Add. Repeat this step for any
additional LDAP servers.
8. (Optional) Congure the remaining LDAP attributes as needed. These options are described in the online help.
• To indicate that Active Directory provides the LDAP database, select the Extended Schema check box.
• To authenticate the connection from the FluidFS cluster to the LDAP server, select the Non-Anonymous LDAP bind check
box. Then, type the LDAP bind distinguished name used to authenticate the connection in the Bind DN eld and type the
LDAP bind password in the Bind Password eld.
• To encrypt the connection from the FluidFS cluster to the LDAP server using TLS, select the LDAP over TLS check box.
• To validate the certicate used by the LDAP server, select the Install LDAP Certicate check box. Then, click Upload
Certicate and select the LDAP SSL certicate to upload to the FluidFS cluster.
9. Click OK.
Change the LDAP Base DN
The LDAP base distinguished name represents where in the directory to begin searching for users.
1. Click the Storage view and select a FluidFS cluster.
2. In the File System pane, expand Environment and select Authentication.
3. In the Authentication pane, click the Directory Services tab.
4. Click Congure External User Database in the NFS User Repository section. The Edit External User Database dialog box
appears.
5. In the Base DN eld, type an LDAP base distinguished name. The name is usually in this format: dc=domain, dc=com.
6. Click OK.
Add or Remove LDAP Servers
At least one LDAP server must be congured.
1. Click the Storage view and select a FluidFS cluster.
2. In the File System pane, expand Environment and select Authentication.
3. In the Authentication pane, click the Directory Services tab.
4. Click Congure External User Database in the NFS User Repository section. The Edit External User Database dialog box
appears.
5. Add or remove LDAP servers.
• To add an LDAP server, type the host name or IP address of an LDAP server in the LDAP Servers text eld and click Add.
• To remove an LDAP server, select an LDAP server and click Remove.
6. Click OK.
Enable or Disable LDAP on Active Directory Extended Schema
Enable the extended schema option if Active Directory provides the LDAP database.
1. Click the Storage view and select a FluidFS cluster.
2. In the File System pane, expand Environment and select Authentication.
3. In the Authentication pane, click the Directory Services tab.
4. Click Congure External User Database in the NFS User Repository section. The Edit External User Database dialog box
appears.
5. Enable or disable LDAP on Active Directory extended schema.
FluidFS Account Management and Authentication
549