Configuring LDAP without TLS for object access

Use the following steps to configure LDAP-based authentication for object access:

  1. To configure LDAP-based authentication for object access, run the following command as shown in this example:
    # mmuserauth service create --type ldap --data-access-method object 
    --user-name "cn=manager,dc=essldapdomain"  
    --base-dn dc=isst,dc=aus,dc=stglabs,dc=ibm,dc=com --ks-dns-name cluster-ces-ip.ibm 
    --ks-admin-user mamdouh --servers 192.0.2.11 
    --user-dn "ou=People,dc=essldapdomain" --ks-swift-user swift 
    The system displays the following output:
    Object configuration with LDAP as identity backend is completed successfully.
    Object Authentication configuration completed successfully.
  2. To verify the authentication configuration, run the following command as shown in this example:
    # mmuserauth service list
    The system displays the following output:
    FILE access not configured
    PARAMETERS               VALUES
    -------------------------------------------------
    
    OBJECT access configuration : LDAP
    PARAMETERS               VALUES
    -------------------------------------------------
    ENABLE_ANONYMOUS_BIND    false
    ENABLE_SERVER_TLS        false
    ENABLE_KS_SSL            false
    USER_NAME                cn=manager,dc=essldapdomain
    SERVERS                  192.0.2.11
    BASE_DN                  dc=isst,dc=aus,dc=stglabs,dc=ibm,dc=com
    USER_DN                  ou=people,dc=essldapdomain
    USER_OBJECTCLASS         posixAccount
    USER_NAME_ATTRIB         cn
    USER_ID_ATTRIB           uid
    USER_MAIL_ATTRIB         mail
    USER_FILTER              none
    ENABLE_KS_CASIGNING      false
    KS_ADMIN_USER            mamdouh