Configuring LDAP without TLS for object access
Use the following steps to configure LDAP-based authentication for object access:
-
To configure LDAP-based authentication for object access, run the following command as shown in
this example:
The system displays the following output:# mmuserauth service create --type ldap --data-access-method object --user-name "cn=manager,dc=essldapdomain" --base-dn dc=isst,dc=aus,dc=stglabs,dc=ibm,dc=com --ks-dns-name cluster-ces-ip.ibm --ks-admin-user mamdouh --servers 192.0.2.11 --user-dn "ou=People,dc=essldapdomain" --ks-swift-user swift
Object configuration with LDAP as identity backend is completed successfully. Object Authentication configuration completed successfully.
- To verify the authentication configuration, run the following command as shown in this
example:
The system displays the following output:# mmuserauth service list
FILE access not configured PARAMETERS VALUES ------------------------------------------------- OBJECT access configuration : LDAP PARAMETERS VALUES ------------------------------------------------- ENABLE_ANONYMOUS_BIND false ENABLE_SERVER_TLS false ENABLE_KS_SSL false USER_NAME cn=manager,dc=essldapdomain SERVERS 192.0.2.11 BASE_DN dc=isst,dc=aus,dc=stglabs,dc=ibm,dc=com USER_DN ou=people,dc=essldapdomain USER_OBJECTCLASS posixAccount USER_NAME_ATTRIB cn USER_ID_ATTRIB uid USER_MAIL_ATTRIB mail USER_FILTER none ENABLE_KS_CASIGNING false KS_ADMIN_USER mamdouh