Configuring identity federation

You can use identity federation to import tenant groups and users. Using identity federation makes setting up tenant groups and users faster, and it allows tenant users to sign in to the tenant account using familiar credentials.

Steps

  1. Configuring a federated identity source
    You must configure a federated identity source (such as Active Directory or OpenLDAP) before you can assign management permissions to federated groups and users.
  2. Forcing synchronization with the identity source
    The StorageGRID Webscale system periodically synchronizes federated groups and users from the identity source. You can force synchronization to start if you want to enable or restrict user permissions as quickly as possible.
  3. Disabling identity federation
    You can temporarily or permanently disable identity federation for tenant groups and users. When identity federation is disabled, there is no communication between the StorageGRID Webscale system and the identity source. However, any settings you have configured are retained, allowing you to easily re-enable identity federation in the future.
Parent topic: Managing system access for tenant users
Copyright © 1994-2019, NetApp, Inc. All rights reserved.
Part number: 215-12403_2019-08_en-us
August 2019