Ldap dialog box – HP StoreAll Storage User Manual
Page 75
Enter the following information in the remaining fields:
Enter the LDAP user account used to authenticate to the LDAP server to read data, such as
cn=hp9000-readonly-user,dc=entx,dc=net
. This account must have privileges to read the
entire directory. Write credentials are not required.
Bind DN
Enter the OU (organizational unit) on the LDAP server to which configuration entries can be written.
This OU must be pre-provisioned on the remote LDAP server. The previous schema configuration
Write OU
step would have seeded this OU with values that will now be read. The LDAPBindDN credentials
must be able to read from the LDAPWriteOU. For example,
ou=9000Config,ou=configuration,dc=entx,dc=net
.
This is normally the root suffix of the directory, but you can provide a base lower down the tree for
business rules enforcement, ACLs, or performance reasons. For example,
ou=people,cd=enx,dc=net
.
Base of Search
Enter any string that identifies the StoreAll host, such as StoreAll.
NetBIOS Name
If your LDAP configuration requires a certificate for secure access, click Edit. The LDAP dialog box
appears.
LDAP dialog box
Use the LDAP dialog box to add a TLS or SSL certificate to the cluster. The certificate must already
exist and be in PEM format.
Complete the following fields:
•
Enable SSL: Select the type of certificate. If a certificate is unnecessary, select Neither TLS or
SSL.
•
Cert CN Value: Enter the CN value for the certificate, such as centralldap.it.entx.net.
•
Certificate Contents: Use a Linux command such as cat to open your certificate file and then
copy the contents, including the RSA key, to this box.
Configuring authentication from the StoreAll Management Console
75