we have a unique setup of user authentication with cDOT system: the user that is used to log in the storage (tpc_admin) is mapped (or actually belongs) to a user group (ibmsvc_administrators). Both are AD based user. The user that is used with netapp-harvest is the tpc_admin. So far this setup works for netapp-harvest. Then later on, we want to try the certificate based authentication as shown in the document. We've tried to create certificate for both users and both failed (with some mismatch error).
My question: any idea how to make certificate based authentication works with this kind of setup? Or it just doesn't work with netapp-harvest, meaning netapp-harvest certificate based authentication only works with normal user (without being mapped to another user group).