- Notes, cautions, and warnings
- Additional resources
- Introduction
- Manage the System
- Configure general system settings
- Configure system information
- Manage software versions
- View faulted storage resources
- Upgrade the system
- Manage security settings
- Manage system time
- Manage schedule time zone
- Manage support configuration and proxy server settings
- Manage support contracts
- Manage Centralized ESRS
- Manage SupportAssist (physical deployments only)
- Manage Connect Home
- Manage user roles
- Manage user accounts
- Manage user account settings
- Manage support credentials
- Manage system limits
- View installed feature licenses
- View and accept the End User License Agreement
- Manage remote logging
- Manage system certificates
- Manage snapshot protection schedules
- Manage task rules
- Manage jobs
- Manage job step
- Configure Network Communication
- Manage NAS servers
- Manage VLANs
- Manage tenants
- Manage CIFS Servers
- Manage NFS servers
- Manage Common Anti Virus Agent (CAVA)
- Manage Events Publishing configuration settings
- Manage CEPA pool configuration settings
- Manage VMware NAS protocol endpoint servers
- Manage reverse CHAP for mutual CHAP authentication
- Set up iSNS for iSCSI storage
- Manage iSCSI configuration
- Manage iSCSI nodes (servers)
- Manage Ethernet ports
- Manage SAS ports (physical deployments only)
- Manage FC ports
- Manage uncommitted ports
- Manage Management network interfaces
- Manage network interfaces
- Manage static IP routes
- Manage link aggregations
- Manage Fail-safe networking (physical deployments only)
- Manage DNS settings
- Manage NTP server settings
- Manage NIS server domains
- Manage SMTP server settings
- Manage NDMP server settings
- Manage LDAP settings
- Utility commands
- Manage Distributed Hierarchical Storage Management
- Manage DHSM Connection
- Manage the tie breaker node (dual-SP virtual deployments only)
- Manage a tie breaker node configuration (dual-SP virtual deployments only)
- Manage Hosts
- Manage host configurations
- Manage host LUNs
- Manage host groups
- Manage host initiators
- Manage host initiator paths
- Manage iSCSI CHAP accounts for one-way CHAP authentication
- Manage iSCSI connections
- Manage iSCSI connection paths
- Manage remote storage systems
- Create remote system configurations
- Verify settings for remote storage systems
- View settings for remote storage systems
- Change settings for remote storage systems
- Delete remote system configurations
- Cabinet level unplanned failover of replication sessions
- Pause replication sessions
- Resume replication sessions
- Manage VMware vCenter
- Manage ESXi hosts
- Virtual machine
- VM hard disk
- Manage Hardware Components
- Manage Storage Processor (SP)
- Manage disk
- Manage battery (physical deployments only)
- Manage power supply (physical deployments only)
- Manage link control card (LCC) (physical deployments only)
- Manage SSD (physical deployments only)
- Manage disk array enclosure (DAE)
- Manage disk processor enclosure (DPE)
- Manage memory module (physical deployments only)
- Manage System Status Card (physical deployments only)
- Manage fan modules (physical deployments only)
- Manage I/O modules, embedded modules, and 4-port cards (physical deployments only)
- Manage Storage
- Configure pools automatically
- Configure custom pools
- Manage pool tiers
- View pool resources
- Manage FAST VP general settings
- Manage FAST Cache (supported physical deployments only)
- Manage FAST Cache storage objects (physical deployments only)
- View storage profiles (physical deployments only)
- Manage drive groups (physical deployments only)
- Manage storage system capacity settings
- Manage system tier capacity settings
- Manage file systems
- Manage user quotas for file systems and quota trees
- Manage quota trees
- Manage quota settings
- Manage NFS network shares
- Manage SMB network shares
- Manage LUNs
- Manage consistency groups
- Manage VMware NFS datastores
- Manage VMware VMFS datastores
- Manage VMware protocol endpoints
- Manage vVol datastores
- Manage vVol objects
- Manage capability profiles
- Manage I/O limits
- Manage I/O limit configuration
- Protect Data
- Manage snapshots
- Manage snapshot NFS shares
- Manage snapshot CIFS shares
- Manage replication sessions
- Create replication sessions
- View replication sessions
- Change replication session settings
- Pause replication sessions
- Resume replication sessions
- Manually synchronize replication sessions
- Delete replication sessions
- Fail over replication sessions
- Fail back replication sessions
- Preserve asynchronous replication sessions
- Re-create a replication session
- Manage virtual RecoverPoint appliance CHAP accounts
- Manage Data at Rest Encryption (physical deployments only)
- Manage KMIP support (physical deployments only)
- Data Mobility
- Manage Events and Alerts
- Service the System
- Manage Metrics
- Use Cases
- Pool use cases
- File sharing use cases
- Resource configuration use cases
- Replication configuration use case
- Configure local replication
- Configure asynchronous replication
- Configure synchronous replication
- Create a replication interface
- Create a replication connection
- Create a replication session for block storage
- Create an asynchronous replication session for file storage
- Create a synchronous replication session for file storage
- View replication sessions
- Reference
Dell Unity™ Family Unisphere® Command Line Interface User Guide
Change LDAP settings
Update a configured LDAP setting.
NOTE:If you intend to use LDAP with SSL, you must upload the CA certificate of the LDAP server to the system by using the
-upload
command before configuring the LDAP settings. For example:
uemcli -d 10.0.0.1 -u admin -p MyPwd -upload -f /tmp/myldapservercertificate.cer /sys/cert -type CA -service Mgmt_LDAP
Format
/net/ldap –id <value> set [{-name <value> | -autoDiscoveryEnabled}] [-port <value>] [-protocol {ldap | ldaps {-certFilePath <value>}}] [-bindDn <value>] [-bindPasswd <value> | -bindPasswdSecure] [-userSearchPath <value>] [-groupSearchPath <value>] [-userIdAttr <value>] [-groupNameAttr <value>] [-userObjectClass <value>] [-groupObjectClass <value>] [-groupMemberAttr <value>] [-timeout <value>]Object qualifier
| Qualifier | Description |
|---|---|
| -id | Type the ID of the LDAP setting to change. |
Action qualifier
| Qualifier | Description |
|---|---|
| -name | Type the IP addresses or hostnames of the primary directory servers to use for authentication. The values you type depends on the format of the subject field entry in each directory server's certificate. Typically, this requires a hostname. Type the LDAP IP addresses or hostnames as a comma-separated string. If IP addresses are specified, the DNS Server for the LDAP domain must be configured with a reverse lookup so that it provides the FQDN for the specified IP addresses. |
| -autoDiscoveryEnabled | Specify to direct the system to obtain the LDAP server addresses or hostnames using DNS. DNS must be configured for this option to take effect.
NOTE:-autoDiscoveryEnabled is the default if you do not specify either
-name or
-autoDiscoveryEnabled.
|
| -domain | Type the domain name for the LDAP server. |
| -port | Type the port number used by the directory server for LDAP communications. By default, LDAP uses port 389, and LDAP over an SSL uses port 636. For forest-level authentication, specify port 3268 for LDAP or port 3269 for LDAPS. |
| -protocol | Type whether the LDAP protocol uses SSL for secure network communication. SSL provides encryption and authentication capabilities. SSL encrypts data over the network and provides message and server authentication. Value is one of the following:
|
| -certFilePath | Path to (filename of) the trusted certificate file used for one way server authentication.
NOTE:If the value of
-protocol is
ldaps, this qualifier is required.
|
| -bindDn | Type the distinguished name (DN) for a user with administrator privileges on the LDAP Server. The DN can be expressed in several formats. For example:
cn=Administrator,cn=Users,dc=mycompany,dc=com Administrator@mycompany.com mycompany.com/Administrator |
| -bindPasswd | Type the password to be used for binding to the LDAP server. This is the password for the user specified in the Bind DN attribute. It is required when the -bindDn qualifier is included. |
| -bindPasswdSecure | Specifies the password in secure mode - the user will be prompted to input the password. |
| -userSearchPath | Type the path to search for users on the directory server. For example: ou=People,dc=lss,dc=emc,dc=com.
NOTE:On an Active Directory server, a default search path is used.
|
| -groupSearchPath | Type the path to search for groups on the directory server. For example: uid=<name>,ou=people,dc=<domaincomponent>,or dc=<domain component>.
NOTE:On an Active Directory server, a default search path is used.
|
| -userIdAttr | Type the name of the LDAP attribute whose value indicates the user ID. Default value is uid. |
| -groupNameAttr | Type the name of the LDAP attribute whose value indicates the group name. Default value is cn. |
| -userObjectClass | Type the LDAP object class for users. Default value is user. In Active Directory, groups and users are stored in the same hierarchical directory path and the class is called group. |
| -groupObjectClass | Type the LDAP object class for groups. Default value is group. In Active Directory, groups and users are stored in the same directory path and the class is called group. |
| -groupMemberAttr | Name of the LDAP attribute whose value contains names of group members within a group. Default value is member. |
| -timeout | Type the timeout for the LDAP server in milliseconds. If the system does not receive a reply from the LDAP server after the specified timeout, it stops sending requests. Default is 10000 milliseconds, or 10 seconds. |
Example
The following command updates the configured LDAP settings:
uemcli -d 10.0.0.1 -u Local/joe -p MyPassword456! /net/ldap -id lDAP_1 set –server lpso242.lss.emc.com –port 389Storage system address: 10.0.0.1 Storage system port: 443 HTTPS connection ID = LDAP_1 Operation completed successfully.
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\