Configure Fully Qualified Domain Name web UI access

Contributors netapp-mwallis netapp-dbagwell Download PDF of this page

NetApp HCI with Element 12.2 or later enables you to access storage cluster web interfaces using the Fully Qualified Domain Name (FQDN). If you want to use the FQDN to access web user interfaces such as the Element web UI, per-node UI, or management node UI, you must first add a storage cluster setting to identify the FQDN used by the cluster. This enables the cluster to properly redirect a login session and improves integration with external services such as key managers and identity providers for multi-factor authentication.

What you’ll need
  • This feature requires Element 12.2 or later and management services version 2.15 or later.

  • To use REST APIs, you must have deployed a management node running version 11.5 or later.

Steps
  1. Ensure that the Element storage nodes and the management node have DNS configured correctly for the network environment so that FQDNs in the environment can be resolved. To set DNS, go to the per-node UI for storage nodes and to the management node, then select Network Settings > Management Network.

    1. Per-node UI for storage nodes: https://<storage_node_management_IP>:442

    2. Per-node UI for the management node: https://<management_node_IP>:442

  2. Access the Element API and create the following cluster interface preference using the CreateClusterInterfacePreference API method, and insert the cluster MVIP FQDN for the preference value:

    • Name: mvip_fqdn

    • Value: <Fully Qualified Domain Name for the Cluster MVIP>

      For example, the FQDN here is storagecluster.my.org:

      https://<Cluster_MVIP>/json-rpc/12.2?method=CreateClusterInterfacePreference&name=mvip_fqdn&value=storagecluster.my.org
  3. Change the management node settings using the REST API on the management node:

    1. Access the REST API UI for the management node by entering the management node IP address followed by /mnode/2/. For example:

      https://<management_node_IP>/mnode/2/
    2. Click Authorize or any lock icon and enter the Element cluster user name and password.

    3. Enter the client ID as mnode-client.

    4. Click Authorize to begin a session.

    5. Close the window.

    6. Click GET /settings.

    7. Click Try it out.

    8. Click Execute.

    9. Note whether or not the proxy is used as indicated in "use_proxy" by true or false.

    10. Click PUT /settings.

    11. Click Try it out.

    12. In the request body area, enter the management node FQDN as the value for the mnode_fqdn parameter. Also specify whether the proxy should be used (true or false from the previous step) for the use_proxy parameter.

      {
        "mnode_fqdn": "mnode.my.org",
        "use_proxy": false
      }
    13. Click Execute.

Find more information