IBM FlashSystem

IBM FlashSystem

Find answers and share expertise on IBM FlashSystem

 View Only
Expand all | Collapse all

LDAP user for Brocade FC switches , discovered by Spectrum Control

  • 1.  LDAP user for Brocade FC switches , discovered by Spectrum Control

    Posted Mon February 03, 2025 09:51 AM

    Hi all,

    I am trying to setup a general ldap user for Brocade FC switches, that is used by IBM Spectrum Control to probe these devices via REST API. IBM SC is on rel. 5.4.12.1, Brocade switches on v9.1.* and later.

    Any ideas how to configure with "ldapcfg" on the FOS CLI ?

    Best regards,

    Martin 



    ------------------------------
    Martin Hansen
    ------------------------------


  • 2.  RE: LDAP user for Brocade FC switches , discovered by Spectrum Control

    Posted Mon February 03, 2025 10:14 AM

    Hi Martin

    to add ADSanSwGroup users as operator role on san switch;

    ldapcfg --maprole ADSANSwGroup operator 



    ------------------------------
    Nezih Boyacioglu
    ------------------------------



  • 3.  RE: LDAP user for Brocade FC switches , discovered by Spectrum Control

    Posted Tue February 11, 2025 04:43 AM
    Edited by Istvan Buda Tue February 11, 2025 04:53 AM

    Hi,

    This is the command workflow on the switch:

    1:    #dnsconfig --add -domain <domain name> -serverip1 <x.x.x.x> -serverip2 <y.y.y.y>
    2:    #aaaconfig --add <LDAP server FQDN> -conf ldap -d <domain name> -t <timeout> -tls_mode <starttls | ldaps>
    3:    #ldapcfg --maprole <ldaprole> <switchrole> (ldaprole is an AD group)
    4:    #aaaconfig --authspec "ldap;local" -nologout

    Then you can play around to try to login with either <sAMAccountName> or <userPrincipalName> from the AD.

    regards,



    ------------------------------
    Istvan Buda
    budai88@gmail.com
    ------------------------------