Registering an LDAP provider

Edit online

Before you begin

  • Create a site to assign to your provider. A site is a user-defined grouping of providers that is generally based on location. See Adding a site
  • When registering providers it is recommended to assign all related sources, such as hosting vCenters and related storage systems, to the same site.
  • For application server it is recommended to keep all resources, such as hosting vCenters and related storage systems, configured in the same site.

Procedure

To register an LDAP provider, complete the following steps:
  1. Click the Configure tab. On the Views pane, select Sites & Providers, then select the Providers tab.
  2. In the Provider Browser pane, select LDAP.
  3. Right-click LDAP. Then click Register. The Register LDAP Server dialog opens.
  4. Populate the fields in the dialog:
    Name
    A user-defined name for the LDAP Server. Provider names must be unique.
    Host Address
    The IP address or resolvable logical node name of the LDAP server.
    Port
    The port on which the LDAP server is listening. The typical default port is 389 for non SSL connections or 636 for SSL connections.
    Use SSL
    Enable to establish a secure connection to the LDAP server.
    Credentials
    Select or create your LDAP credentials. See Identities Overview
    Note: If upgrading from a previous version of IBM® Storage Defender Copy Data Management in which a username and password was entered during the provider registration process, an Identify will be automatically created for the provider.
    Base DN
    The location where users and groups can be found.
    User Filter
    A filter to select only those users under the Base DN that match certain criteria. An example of a valid default user filter is cn={0}.
    To enable authentication using the sAMAccountName Windows™ user naming attribute, set the User Filter to samaccountname={0}.
    To enable authentication using an e-mail address associated with LDAP, set the User Filter to mail={0}.
    Note that this entry also controls the type of user name that appears in IBM Storage Defender Copy Data Management display of users.
    User RDN
    The relative distinguished path for the user. Specify the path where user records can be found. An example of a valid default RDN is:
    cn=Users
    Group RDN
    The relative distinguished path for the group. Specify the path where group records can be found if the group is at a different level than the user path.
    Comment
    Optional description.
  5. Click OK. IBM Storage Defender Copy Data Management first confirms a network connection and then adds the provider to the database.

    If a message appears indicating that the connection is unsuccessful, review your entries. If your entries are correct and the connection is unsuccessful, contact a system administrator to review the connections.