SET LDAPUSER (Specify an ID for an LDAP directory server)
Use this command to specify the ID of a user or account that can access a Lightweight Directory Access Protocol (LDAP) server.
The specified ID must have read access to the accounts on the LDAP server that are used for authentication. To modify LDAP IDs or reset passwords for LDAP IDs, the specified ID must have write authority for accounts on the LDAP server.
Tip: The information in this documentation applies to the LDAP authentication method that is preferred for IBM Spectrum® Protect V7.1.7 or later servers. For instructions about using the previous LDAP authentication method, see Managing passwords and logon procedures.
Privilege class
To issue this command, you must have system privilege.Syntax
Parameters
- ldap_user_dn
- Specifies the ID of a user or account that can access an LDAP server.
Example: Specify an administrative user ID for conducting operations on an LDAP server
To specify an administrator with a user ID of JACKSPRATT, who represents a US company that is named EXAMPLE, issue the following command:
set ldapuser JackSpratt@us.example.com
Related commands
Command | Description |
---|---|
AUDIT LDAPDIRECTORY | Audit an IBM Spectrum Protect-controlled namespace on an LDAP directory server. |
SET DEFAULTAUTHENTICATION | Specifies the default password authentication method for any REGISTER NODE or REGISTER ADMIN commands. |
SET LDAPPASSWORD | Sets the password for the LDAPUSER. |