Book description
The IBM® DS8000® series includes the option to replace the locally based user ID and password authentication with a centralized directory-based approach.
This IBM Redpaper publication helps DS8000 storage administrators understand the concepts and benefits of a centralized directory. It provides the information that is required for implementing a DS8000 authentication mechanism that is based on the Lightweight Directory Access Protocol (LDAP).
Starting with DS8000 Release 9.1 code, a simpler, native LDAP authentication method is supported along with the former implementation that relies on IBM Copy Services Manager (CSM) acting as a proxy between the DS8000 and external LDAP servers.
Note that examples and operations shown in this Redpaper refer to the DS8000 R9.1 SP1, code release bundle 89.11.33.0.
Table of contents
- Front cover
- Notices
- Preface
- Chapter 1. IBM DS8000 user authentication
- Chapter 2. Lightweight Directory Access Protocol for IBM DS8000 administrators
- Chapter 3. IBM DS8000 user management
-
Chapter 4. IBM DS8000 GUI implementation
-
4.1 Configuring remote authentication by using the GUI
- 4.1.1 Starting the wizard
- 4.1.2 Remote Authentication type
- 4.1.3 LDAP server type
- 4.1.4 LDAP Servers access
- 4.1.5 Configuring the access mode
- 4.1.6 Configure Lookup Method
- 4.1.7 Enable Local Administrator window
- 4.1.8 Authentication mapping
- 4.1.9 Special consideration for secadmin users
- 4.1.10 Administrator verification
- 4.2 Modifying an existing configuration
- 4.3 Enabling local authentication
- 4.4 Exporting and importing the configuration
-
4.1 Configuring remote authentication by using the GUI
-
Chapter 5. Implementing LDAP by using the DS Command-Line Interface
- 5.1 Overview
- 5.2 Creating a truststore for a secure LDAP connection
- 5.3 Creating a remote authentication policy
- 5.4 Testing and activating a remote authentication policy
- 5.5 Managing remote authentication policies by using the DS CLI
- 5.6 Special considerations for security administrators
- 5.7 Special considerations for resource groups
- Chapter 6. Implementing LDAP with directory services
- Chapter 7. IBM Resource Access Control Facility
- Chapter 8. Migrating from IBM Copy Services Manager based LDAP authentication to native LDAP authentication
-
Chapter 9. Implementing LDAP through IBM Copy Services Manager
- 9.1 Architecture for remote authentication through CSM
- 9.2 Differences between embedded and external CSM
- 9.3 Creating a truststore
- 9.4 Configuring the CSM servers for LDAP authentication
- 9.5 Configuring the DS8000 system for LDAP authentication
- 9.6 Mapping LDAP users and groups to the DS8000 Security Administrator role
- Appendix A. LDAP planning worksheet
- Appendix B. Troubleshooting
- Appendix C. Exporting secure certificates by using the Google Chrome and Microsoft Edge web browsers
- Related publications
- Back cover
Product information
- Title: LDAP Authentication for IBM DS8000 Systems: Updated for DS8000 Release 9.1
- Author(s):
- Release date: March 2021
- Publisher(s): IBM Redbooks
- ISBN: 9780738459486
You might also like
book
LDAP Authentication for IBM DS8000 Systems
The IBM® DS8000® series includes the option to replace the locally based user ID and password …
book
IBM DS8000 Copy Services: Updated for IBM DS8000 Release 9.1
This IBM® Redbooks® publication helps you plan, install, configure, and manage Copy Services on the IBM …
book
Linux® Bible 2011 Edition: Boot up to Ubuntu®, Fedora®, KNOPPIX, Debian®, openSUSE®, and 13 Other Distributions
The most up-to-date guide on the latest version of Linux Linux is an excellent, low-cost alternative …
book
Securing Your Critical Workloads with IBM Hyper Protect Services
Many organizations must protect their mission-critical applications in production, but security threats can also surface during …