Setting up authentication servers to configure protocol user access

Before you start configuring authentication for protocol access, the system administrator needs to ensure that the authentication server is set up properly and the connection between the IBM Spectrum Scale system and authentication server is established properly.

Depending on the requirement, the IBM Spectrum Scale system administrator needs to set up the following servers:
  • Microsoft Active Directory (AD) for file and object access
  • Lightweight Directory Access Protocol server for file and object access
  • Keystone server to configure local, AD, or LDAP-based authentication for object access. Configuring Keystone is a mandatory requirement if you need to have Object access.

AD and LDAP servers are set up externally. You can configure either an internal or external Keystone server. The installation and configuration of an external authentication server must be handled separately. The IBM Spectrum Scale system installation manages the installation and set up of internal Keystone server.

Parent topic: Managing protocol user authentication
Related concepts:
Configuring authentication and ID mapping for file access
Managing user-defined authentication
Configuring authentication for object access
Deleting the authentication and the ID mapping configuration
Listing the authentication configuration
Verifying the authentication services configured in the system
Modifying the authentication method
Authentication limitations