Hi all,

I am trying to setup a general ldap user for Brocade FC switches, that is used by IBM Spectrum Control to probe these devices via REST API. IBM SC is on rel. 5.4.12.1, Brocade switches on v9.1.* and later.

Any ideas how to configure with "ldapcfg" on the FOS CLI ?

Best regards,

Martin 

Hi Martin

to add ADSanSwGroup users as operator role on san switch;

ldapcfg --maprole ADSANSwGroup operator 

Hi,

This is the command workflow on the switch:

1:    #dnsconfig --add -domain <domain name> -serverip1 <x.x.x.x> -serverip2 <y.y.y.y>
2:    #aaaconfig --add <LDAP server FQDN> -conf ldap -d <domain name> -t <timeout> -tls_mode <starttls | ldaps>
3:    #ldapcfg --maprole <ldaprole> <switchrole> (ldaprole is an AD group)
4:    #aaaconfig --authspec "ldap;local" -nologout

Then you can play around to try to login with either <sAMAccountName> or <userPrincipalName> from the AD.

regards,

------------------------------
Istvan Buda
budai88@gmail.com
------------------------------