Setting up authentication servers to configure protocol user access

Before you start configuring authentication for protocol access, ensure that the authentication server is set up and the connection between the IBM Storage Scale system and authentication server is established.

Depending on the requirement, the IBM Storage Scale system administrator needs to set up the following servers:

Microsoft Active Directory (AD) for file and object access
Lightweight Directory Access Protocol server for file and object access
Keystone server to configure local, AD, or LDAP-based authentication for object access. Configuring Keystone is a mandatory requirement if you need to have object access.

AD and LDAP servers are set up externally. You can configure either an internal or external Keystone server. The installation and configuration of an external authentication server must be handled separately. The IBM Storage Scale system installation manages the installation and setup of internal Keystone server.

IBM Storage Scale system supports configuration of authentication with IPv6 address of external authentication servers.