LDAP - Migrating

Use this command to migrate user information from local to LDAP.

A security administrator can change a user account type by setting the auth_mode attribute. The valid values for this attribute are "ldap" and "internal".

Prerequisites for converting local users to LDAP users

Users already exist in the Lightweight Directory Access Protocol (LDAP) directory, and you can successfully use the LDAP client tool to log in with those user names.
LDAP security is configured properly in IBM® Cloud Pak System W3550 so that no errors are produced when testing LDAP authentication settings for user, group, and membership names.
LDAP is configured to optimize searches for user, group, and membership names. Slow performance when searching names might result in unexpected errors.

Example

user = admin.users.list({"user_id":"test"})[0]
user.auth_mode = "ldap"

Note: When migrating an LDAP user to a local user, a security administrator with full permissions has to set the password for the local user account.