Manualshelf

HP 3PAR Command Line Interface Administrator's Manual: HP 3PAR OS 3.1.2 (QR482-96525, September 2013)

ManualsBrandsHP ManualsStorageHP 3PAR StoreServ 7450 2-node Base
21222324252627282930
NOTE: The examples used to illustrate the procedures described for Active Directory LDAP
configuration with SASL binding specifically use GSSAPI as the SASL binding mechanism.
As you will see, a single user is used to determine group hierarchies and path structures used in
the system, which are then used to complete the LDAP configuration.
Configuring Connection Parameters
To configure connection parameters:
1. If not already known, obtain the LDAP server’s host name and Kerberos server information by
running the ldapsearch command or using ldp.exe (available as part of the downloadable
Windows Support Tools from Microsoft). You must know the LDAP server’s IP address.
NOTE: If you do not have access to the ldapsearch command, use the ldp.exe command
shown below.
Issue the ldapsearch command and record the displayed dnsHostName (the value
used for the ldap-server-hn parameter) and ldapServiceName (the value used for
the kerberos-realm parameter) attributes for later use.
Run ldp.exe as follows:
1. Click StartRun.
2. In the Open box, enter ldp and click OK.
3. The Ldp window opens.
4. In the Ldp window, click ConnectionConnect.
5. In the Server box, enter the Active Directory server’s IP address and click OK.
The root DSE attributes and values are displayed in the right-side pane.
NOTE: In ldp.exe, the Kerberos realm is the portion of the ldapServiceName
value that follows the “at” (@) sign and terminates before the semi-colon (;).
In ldapsearch output, the Kerberos realm is the portion of the ldapServiceName
value that follows the “at” (@) sign.
6. Record the displayed dnsHostName (the value used for the ldap-server-hn
parameter) and ldapServiceName (the value used for the kerberos-realm
parameter) attributes for later use.
2. Set the address to which the LDAP server will connect by issuing the setauthparam
ldap-server <IP_address> command, where <IP_address> is your LDAP server’s IP
address.
3. Set the LDAP server’s host name by issuing the setauthparam ldap-server-hn
<DNS_HostName> command, where <DNS_HostName> is the value displayed by either
using the ldapsearch command or ldp.exe in Step 1.
Configuring LDAP Connections 23