Hi there
I am trying to get my F810 Filer (Data Ontap 7.1) to authenticate users against an LDAP directory. I read this http://<filername>/na_admin/doc/html/ontap/filesag/7multi21.htm and changed the options mentioned, namely:
ldap.base ldap.base.group ldap.base.passwd ldap.enable ldap.port ldap.servers ldap.usermap.enable
I also set the CIFS authentication method to 4.
My problem is that the Filer isn't very informative about what's going on. When adding a Filer to a Windows 2000 domain I get all sorts of status messages while adding it to the domain and afterwards I can run cifs domaininfo and cifs lookup to test the access to the domain and it works fine.
But when trying this LDAP out the filer just logs nothing..when trying to add a UID from our LDAP directory to a share it just adds the UID that I type without validating it anywhere (or so it seems)
My question: Is there a command or a way to get some sort of LDAP related status messages out? Even if it was just a "bind succesful" message or "authentication failed" it would help me a lot.
Bonus question: What syntax should I use when adding a user to a share using an LDAP directory? When using a domain I just type domain\username but what exactly do I need to type when my authentication method is LDAP?
The LDAP directory I connect to is not an Active Directory.
Thanks in advance for any help. -- View this message in context: http://www.nabble.com/Getting-LDAP-to-work-t1160700.html#a3046434 Sent from the Network Appliance - Toasters forum at Nabble.com.
What does /etc/nsswitch.conf say?
Regards, Max
Hi there
I am trying to get my F810 Filer (Data Ontap 7.1) to authenticate users against an LDAP directory. I read this http://<filername>/na_admin/doc/html/ontap/filesag/7multi21.htm and changed the options mentioned, namely:
ldap.base ldap.base.group ldap.base.passwd ldap.enable ldap.port ldap.servers ldap.usermap.enable
I also set the CIFS authentication method to 4.
My problem is that the Filer isn't very informative about what's going on. When adding a Filer to a Windows 2000 domain I get all sorts of status messages while adding it to the domain and afterwards I can run cifs domaininfo and cifs lookup to test the access to the domain and it works fine.
But when trying this LDAP out the filer just logs nothing..when trying to add a UID from our LDAP directory to a share it just adds the UID that I type without validating it anywhere (or so it seems)
My question: Is there a command or a way to get some sort of LDAP related status messages out? Even if it was just a "bind succesful" message or "authentication failed" it would help me a lot.
Bonus question: What syntax should I use when adding a user to a share using an LDAP directory? When using a domain I just type domain\username but what exactly do I need to type when my authentication method is LDAP?
The LDAP directory I connect to is not an Active Directory.
Thanks in advance for any help.
View this message in context: http://www.nabble.com/Getting-LDAP-to-work-t1160700.html#a3046434 Sent from the Network Appliance - Toasters forum at Nabble.com.
-
isc78 -
Max