Veritas Storage Foundation 5.1 SP1 Cluster File System Installation Guide (5900-1510, April 2011)

■ The type of LDAP schema used (the default is RFC 2307)

■ UserObjectClass (the default is posixAccount)

■ UserObject Attribute (the default is uid)

■ User Group Attribute (the default is gidNumber)

■ Group Object Class (the default is posixGroup)

■ GroupObject Attribute (the default is cn)

■ Group GID Attribute (the default is gidNumber)

■ Group Membership Attribute (the default is memberUid)

■ URL to the LDAP Directory

■ Distinguished name for the user container (for example,

UserBaseDN=ou=people,dc=comp,dc=com)

■ Distinguished name for the group container (for example,

GroupBaseDN=ou=group,dc=comp,dc=com)

Enabling LDAP authentication for clusters that run in secure mode

The following procedure shows how to enable the plug-in module for LDAP

authentication. This section provides examples for OpenLDAP and Windows

Active Directory LDAP distributions.

Before you enable the LDAP authentication, complete the following steps:

■ Make sure that the cluster runs in secure mode.

# haclus -value SecureClus

The output must return the value as 1.

■ Make sure that the AT version is 5.0.32.0 or later.

# /opt/VRTSat/bin/vssat showversion

vssat version: 5.0.32.0

See the vssat.1m and the atldapconf.1m manual pages.

Verifying the Storage Foundation Cluster File System installation

About enabling LDAP authentication for clusters that run in secure mode

252