https://community.netapp.com/t5/Network-and-Storage-Protocols/LDAP-and-AD-on-same-filer/m-p/42893#M3955 <HTML><HEAD></HEAD><BODY><P>Sorry for the late response, I'm not very often on NOW.</P><P>Yes it definitly can.</P><P>I have a Metro Cluster and some standalone boxes and all are AD integrated for CIFS and LDAP (openldap on Linux) integrated for NFS. And there is even a facility to map AD users to LDAP users (e.g. <A href="mailto:globalAadmin@Company.domain" target="_blank">globalAadmin@Company.domain</A> &lt;=&gt; sysadmin (uid=1234, gid=4321)) for multi-protocol volumes.</P><P></P><P>Boomer</P></BODY></HTML> Fri, 17 Feb 2012 11:25:54 GMT boomer123 2012-02-17T11:25:54Z https://community.netapp.com/t5/Network-and-Storage-Protocols/LDAP-and-AD-on-same-filer/m-p/42876#M3952 <HTML><HEAD></HEAD><BODY><P>Can a filer be configured&nbsp; to have&nbsp; cifs registered with a windows AD domain and the&nbsp; filer configured to join another LDAP server?.Do you have a similar config?</P><P></P><P>Thanks.</P></BODY></HTML> Thu, 05 Jun 2025 06:41:07 GMT https://community.netapp.com/t5/Network-and-Storage-Protocols/LDAP-and-AD-on-same-filer/m-p/42876#M3952 baijulal 2025-06-05T06:41:07Z https://community.netapp.com/t5/Network-and-Storage-Protocols/LDAP-and-AD-on-same-filer/m-p/42880#M3953 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>I am not 100% sure what you are after, but I don't think it is doable - "joining" AD domain is something which always happens in a CIFS service context.</P><P></P><P>Maybe MultiStore is worth looking at? Each of vFilers can join a separate domain, if it helps.</P><P></P><P>Regards,<BR />Radek</P></BODY></HTML> Fri, 18 Nov 2011 16:54:30 GMT https://community.netapp.com/t5/Network-and-Storage-Protocols/LDAP-and-AD-on-same-filer/m-p/42880#M3953 radek_kubka 2011-11-18T16:54:30Z https://community.netapp.com/t5/Network-and-Storage-Protocols/LDAP-and-AD-on-same-filer/m-p/42884#M3954 <HTML><HEAD></HEAD><BODY><P>I believe that the correct way to achieve integration with multiple directory services would be through leveraging a unified/federated login service like Centrify.&nbsp; That will allow ONE service to control authentication and consult the other service when needed.&nbsp; One of the problems that I could foresee with joining a filer to an AD domain and also specifying a second LDAP directory service would be conflicts with permissions.&nbsp; Users with accounts in each of the different directories that have conflicting permissions could cause a security issue (not to mention, there's no mechanism that I'm aware of for the filer to decide which is authoritative).&nbsp; If a single sign on service isn't an option, then I'd suggest what Radek said above and look at vFilers for this.&nbsp; You can have one vFiler joined to one domain/LDAP and others joined to different ones and present no issues.&nbsp; Hope this helps.</P><P></P><P>Matt</P></BODY></HTML> Fri, 18 Nov 2011 17:45:55 GMT https://community.netapp.com/t5/Network-and-Storage-Protocols/LDAP-and-AD-on-same-filer/m-p/42884#M3954 dearmon 2011-11-18T17:45:55Z https://community.netapp.com/t5/Network-and-Storage-Protocols/LDAP-and-AD-on-same-filer/m-p/42893#M3955 <HTML><HEAD></HEAD><BODY><P>Sorry for the late response, I'm not very often on NOW.</P><P>Yes it definitly can.</P><P>I have a Metro Cluster and some standalone boxes and all are AD integrated for CIFS and LDAP (openldap on Linux) integrated for NFS. And there is even a facility to map AD users to LDAP users (e.g. <A href="mailto:globalAadmin@Company.domain" target="_blank">globalAadmin@Company.domain</A> &lt;=&gt; sysadmin (uid=1234, gid=4321)) for multi-protocol volumes.</P><P></P><P>Boomer</P></BODY></HTML> Fri, 17 Feb 2012 11:25:54 GMT https://community.netapp.com/t5/Network-and-Storage-Protocols/LDAP-and-AD-on-same-filer/m-p/42893#M3955 boomer123 2012-02-17T11:25:54Z https://community.netapp.com/t5/Network-and-Storage-Protocols/LDAP-and-AD-on-same-filer/m-p/42897#M3956 <HTML><HEAD></HEAD><BODY><P>Boomer,</P><P>I too have a need for having both AD integration for CIFS and LDAP integration for NFS.</P><P></P><P>Could you share on how you got the netapp to use both or can you point me to documentation you used?</P><P></P><P>The CIFS part is easy since cifs setup you tell it to joing AD domain.&nbsp; However, my question comes in how you tell the NFS side to authenticate with openldap.</P><P>Thanks Jim</P></BODY></HTML> Fri, 31 Aug 2012 10:43:58 GMT https://community.netapp.com/t5/Network-and-Storage-Protocols/LDAP-and-AD-on-same-filer/m-p/42897#M3956 1jimpross 2012-08-31T10:43:58Z https://community.netapp.com/t5/Network-and-Storage-Protocols/LDAP-and-AD-on-same-filer/m-p/42900#M3957 <HTML><HEAD></HEAD><BODY><P>See <A href="http://media.netapp.com/documents/tr-3458.pdf" target="_blank">http://media.netapp.com/documents/tr-3458.pdf</A> for detailed description.</P></BODY></HTML> Fri, 31 Aug 2012 10:52:06 GMT https://community.netapp.com/t5/Network-and-Storage-Protocols/LDAP-and-AD-on-same-filer/m-p/42900#M3957 aborzenkov 2012-08-31T10:52:06Z