Configuring LDAP without TLS and Kerberos for file access

You can configure LDAP without TLS or Kerberos for file access. But this method is less secured compared to LDAP with TLS, LDAP with TLS and Kerberos, and LDAP with Kerberos configurations.

The following information provides an example on how to configure LDAP without TLS and Kerberos as the authentication method for file access:
  1. Issue the mmuserauth service create command. 
    mmuserauth service create --type ldap --data-access-method file 
--servers 192.0.2.18 --base-dn dc=example,dc=com 
--user-name cn=manager,dc=example,dc=com  --netbios-name ess
    A sample output is as follows:
    File Authentication configuration completed successfully.
  2. To verify the authentication configuration, issue the mmuserauth service list command as shown in the following example: 
    mmuserauth service list
    A sample output is as follows:
    FILE access configuration : LDAP
PARAMETERS               VALUES
-------------------------------------------------
ENABLE_SERVER_TLS        false
ENABLE_KERBEROS          false
USER_NAME                cn=manager,dc=example,dc=com
SERVERS                  192.0.2.18
NETBIOS_NAME             ess
BASE_DN                  dc=example,dc=com
USER_DN                  none
GROUP_DN                 none
NETGROUP_DN              none
USER_OBJECTCLASS         posixAccount
GROUP_OBJECTCLASS        posixGroup
USER_NAME_ATTRIB         cn
USER_ID_ATTRIB           uid
KERBEROS_SERVER          none
KERBEROS_REALM           none

OBJECT access not configured
PARAMETERS               VALUES
-------------------------------------------------
  3. To configure an IBM Storage Scale system with LDAP that has IPv6 address, issue the following command: 
    mmuserauth service create --type ldap --data-access-method file --servers [2001:192::e61f:122:feb7:5df0]
--base-dn dc=example,dc=com --user-name cn=ldapuser,dc=example,dc=com --netbios-name specscale
    A sample output is as follows:
    File Authentication configuration completed successfully.
  4. To verify the authentication configuration with LDAP that has IPv6 address, issue the mmuserauth service list command. 
    mmuserauth service list
    A sample output is as follows:
    FILE access configuration : LDAP
PARAMETERS               VALUES                   
-------------------------------------------------
ENABLE_SERVER_TLS        false                    
ENABLE_KERBEROS          false                    
USER_NAME                cn=ldapuser,dc=example,dc=com
SERVERS                  [2001:192::e61f:122:feb7:5df0]
NETBIOS_NAME             specscale                
BASE_DN                  dc=example,dc=com          
USER_DN                  none                     
GROUP_DN                 none                     
NETGROUP_DN              none                     
USER_OBJECTCLASS         posixAccount             
GROUP_OBJECTCLASS        posixGroup               
USER_NAME_ATTRIB         cn                       
USER_ID_ATTRIB           uid                      
KERBEROS_SERVER          none                     
KERBEROS_REALM           none                     

OBJECT access not configured
PARAMETERS               VALUES                   
-------------------------------------------------