Does FAS/AFF (ONTAP9) supported OpenLDAP?

hanjizzzy · ‎2022-01-18

Hi all.

Customer wants to use OpenLDAP, But I can't find any documents for configuring OpenLDAP.

I find below documents but this documents is too old. and maybe it was apply to 7mode os.

https://library.netapp.com/ecmdocs/ECMP1364220/html/GUID-DE46DB06-0E1D-4327-8CF6-BE6BE41D2EB1.html

and there is no contents for OpenLDAP in ONTAP9 documents.

https://docs.netapp.com/us-en/ontap/authentication/configure-ldap-server-access-task.html

If anyone know about these problem, Please let me know

Regards.

parisi · ‎2022-01-19

OpenLDAP is a standard LDAP server that adheres to RFC-2307 compliance, so it works fine with ONTAP as an identity management service for users and groups.

In ONTAP, you configure it by creating an LDAP client in the SVM as per this:

https://docs.netapp.com/us-en/ontap/nfs-config/create-ldap-client-config-task.html

OpenLDAP configuration in ONTAP is simply knowing how to bind (login) to the LDAP server (anonymous? password? certificates?) and what the LDAP schema is for lookups. For OpenLDAP, it's generally RFC-2307.

This doc covers creating LDAP clients in SVMs:

https://docs.netapp.com/us-en/ontap/nfs-config/create-ldap-client-config-task.html

This TR covers LDAP in general and shows sample configs (with a focus on AD LDAP and FreeIPA) and should give you some idea of how this is configured and commands to test it out:

https://www.netapp.com/pdf.html?item=/media/19423-tr-4835.pdf

Does FAS/AFF (ONTAP9) supported OpenLDAP?

Get ready to power on