Configuring LDAP without TLS for object access

Use the following steps to configure LDAP-based authentication for object access:

1. To configure LDAP-based authentication for object access, run the following command as shown in this example:

   # mmuserauth service create --type ldap --data-access-method object 
   --user-name "cn=manager,dc=essldapdomain"  
   --base-dn dc=isst,dc=aus,dc=stglabs,dc=ibm,dc=com --ks-dns-name cluster-ces-ip.ibm 
   --ks-admin-user mamdouh --servers 192.0.2.11 
   --user-dn "ou=People,dc=essldapdomain" --ks-swift-user swift 

   The system displays the following output:

   Object configuration with LDAP as identity backend is completed successfully.
   Object Authentication configuration completed successfully.

2. To verify the authentication configuration, run the following command as shown in this example:

   # mmuserauth service list

   The system displays the following output:

   FILE access not configured
   PARAMETERS               VALUES
   -------------------------------------------------
   
   OBJECT access configuration : LDAP
   PARAMETERS               VALUES
   -------------------------------------------------
   ENABLE_ANONYMOUS_BIND    false
   ENABLE_SERVER_TLS        false
   ENABLE_KS_SSL            false
   USER_NAME                cn=manager,dc=essldapdomain
   SERVERS                  192.0.2.11
   BASE_DN                  dc=isst,dc=aus,dc=stglabs,dc=ibm,dc=com
   USER_DN                  ou=people,dc=essldapdomain
   USER_OBJECTCLASS         posixAccount
   USER_NAME_ATTRIB         cn
   USER_ID_ATTRIB           uid
   USER_MAIL_ATTRIB         mail
   USER_FILTER              none
   ENABLE_KS_CASIGNING      false
   KS_ADMIN_USER            mamdouh