Before you can authenticate passwords by using an LDAP server, you must ensure that the LDAP server can communicate securely with the IBM Spectrum Protect™ server.
Procedure
- Ask the system administrator of the LDAP server to verify that the following requirements are met:
- The LDAP server has an Active Directory database that is used to manage system users.
- The LDAP server is configured for secure communications by using the Transport Layer Security (TLS) protocol. For instructions about configuring an LDAP server for TLS, see Configuring SSL or TLS for LDAP directory servers.
Ensure that both requirements are met before you proceed to the next step.
- Ask the LDAP administrator to create or select a user or account ID for the IBM
Spectrum Protect server. This ID is used for administrative operations on the LDAP server. Ensure that the specified ID has read access to the accounts on the LDAP server that are used for authentication.
- Ask the LDAP administrator to provide a copy of the trusted certificate on the LDAP server.