Manualshelf

6.1 HP IBRIX X9000 Network Storage System CLI Reference (TA768-96057, June 2012)

ManualsBrandsHP ManualsStorageHP X9320 IB 21.6TB Network Storage System
81828384858687888990
ibrix_ldapconfig
Configures LDAP as the primary user authentication method for CIFS shares.
Description
The ibrix_ldapconfig command configures LDAP as the primary authentication method for
users accessing CIFS shares on an X9000 file system.
IMPORTANT: Before using ibrix_ldapconfig to configure LDAP on the cluster nodes, you
must configure the remote LDAP server. For more information, see the HP IBRIX X9000 Network
Storage System File System User Guide. LDAP authentication cannot be used with Active Directory.
Synopsis
Add an LDAP configuration and enable LDAP:
ibrix_ldapconfig -a -h LDAPSERVERHOST [-P LDAPSERVERPORT] -b LDAPBINDDN
-p LDAPBINDDNPASSWORD -w LDAPWRITEOU -B LDAPBASEOFSEARCH -n NETBIOS -E
ENABLESSL [-f CERTFILEPATH]
Modify an LDAP configuration:
ibrix_ldapconfig -m -h LDAPSERVERHOST [-P LDAPSERVERPORT] [e|D] [-b
LDAPBINDDN] [-p LDAPBINDDNPASSWORD] [-w LDAPWRITEOU] [-B
LDAPBASEOFSEARCH] [-n NETBIOS] [-E ENABLESSL] [-f CERTFILEPATH]
View the LDAP configuration:
ibrix_ldapconfig -i
Delete LDAP settings for an LDAP server host:
ibrix_ldapconfig -d -h LDAPSERVERHOST
Enable LDAP:
ibrix_ldapconfig -e -h LDAPSERVERHOST
Disable LDAP:
ibrix_ldapconfig -D -h LDAPSERVERHOST
Options
DescriptionOption
Specifies the LDAP base for searches. This is normally the root suffix of the directory, but
you can provide a base lower down the tree for business rules enforcement, ACLs, or
performance reasons. For example, ou=people,cd=enx,dc=net.
-B LDAPBASEOFSEARCH
Disables LDAP.-D
Specifies the type of certificate required. Enter 0 for no certificate, 1 for TLS, or 2 for SSL.-E ENABLESSL
The LDAP server port (TCP port 389 for unencrypted or TLS encrypted; 636 for SSL
encrypted).
-P LDAPSERVERPORT
Adds an LDAP configuration and enables LDAP.-a
The LDAP User Account used to authenticate to the LDAP server to read data. This account
must have privileges to read the entire directory. Write credentials are not required. For
example: cn=hpx9000-readonly-user,dc=enxt,dc=net.
-b LDAPBINDDN
Deletes LDAP settings for an LDAP server host.-d
Enables LDAP.-e
The path to the TLS or SSL certificate file, such as /usr/local/ibrix/ldap/key.pem.-f CERTFILEPATH
90 X9000 File Serving Software commands