Configuring LDAP (Creating a new NFS-enabled SVM)

If you want the storage virtual machine (SVM) to get user information from Active Directory-based Lightweight Directory Access Protocol (LDAP), you must create an LDAP client, enable it for the SVM, and give LDAP priority over other sources of user information.

Before you begin

Steps

  1. Navigate to the SVMs window.
  2. Select the required SVM
  3. Click the SVM Settings tab.
  4. Set up an LDAP client for the SVM to use:
    1. In the Services pane, click LDAP Client.
    2. In the LDAP Client Configuration window, click Add.
    3. In the General tab of the Create LDAP Client window, type the name of the LDAP client configuration, such as vs0client1.
    4. Add either the AD domain or the AD servers.

      This image is explained by the surrounding text.
    5. Click Binding, and specify the authentication level, the Bind user and password, the base DN, and the port.

      This image is explained by the surrounding text.
    6. Click Save and Close.
    A new client is created and available for the SVM to use.
  5. Enable the new LDAP client for the SVM:
    1. In the navigation pane, click LDAP Configuration.
    2. Click Edit.
    3. Ensure that the client you just created is selected in LDAP client name.
    4. Select Enable LDAP client, and click OK.

      This image is explained by the surrounding text.
    The SVM uses the new LDAP client.
  6. Give LDAP priority over other sources of user information, such as Network Information Service (NIS) and local users and groups:
    1. Navigate to the SVMs window.
    2. Select the SVM and click Edit.
    3. Click the Services tab.
    4. Under Name Service Switch, specify LDAP as the preferred name service switch source for the database types.
    5. Click Save and Close.

    This graphic is described by the surrounding text.
    LDAP is the primary source of user information for name services and name mapping on this SVM.