HP 3PAR StoreServ 7400 2-node HP 3PAR Command Line Interface Administrator& - Page 35
Configuring Group Location Parameters, is the search base
View all HP 3PAR StoreServ 7400 2-node manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 35 highlights
3. Issue the setauthparam user-attr command, where is the name of the attribute holding the user's . Example: system1 cli% setauthparam -f binding simple In the example above, simple binding is specified as the binding mechanism. system1 cli% setauthparam -f user-dn-base ou=people,dc=ldaptest,dc=3par,dc=com In the example above, the base of the user entries in the OpenLDAP server directory information tree is ou=people,dc=ldaptest,dc=3par,dc=com. system1 cli% setauthparam -f user-attr uid In the example above, uid is the attribute with the value of the user's user name of the posixAccount object class. Configuring Group Location Parameters To configure group location parameters, perform the following: 1. Issue the setauthparam groups-dn command, where is the basis of the search for objects holding group information in the subtree of the directory information tree. 2. Issue the setauthparam group-object command. 3. Issue the setauthparam group-name-attr command, where is the group object's attribute that holds the group name. 4. Issue the setauthparam member-attr command, where is attribute that holds the names of the users in the group. Example: system1 cli% setauthparam -f groups-dn ou=groups,dc=ldaptest,dc=3par,dc=com In the example above, ou=groups,dc=ldaptest,dc=3par,dc=com is the search base for objects holding group information in the directory information subtree. system1 cli% setauthparam -f group-obj posixGroup system1 cli% setauthparam -f group-name-attr cn system1 cli% setauthparam -f member-attr memberUid In the example above: • posixGroup is the group object class. • cn is the attribute of the posixGroup, which has a value of the group's name. • memberUid is the attribute with the value of the user's . Configuring Group-To-Role Mapping Parameters Once you have configured the group location parameters, you must now decide what role you wish to assign the users for a given group. To configure group-to-role mapping: Configuring LDAP Connections 35