ONTAP Discussions

Multiprotocol SVM bind question

TimJMcCuen

Hello,

 

I am in the process of setting up a SVM that will use CIFs and NFS.   I am using ontap 9.7p12 classic view in system manager.      When I click on my SVM > NFS > services  > LDAP client there are two tabs.  The second tab is for binding.   My question is should I check the box for "bind as a CIFs server" (since this is a multiprotocol SVM) or should I just fill in the blanks for authentication, Bind DN user and Bind User password?   We don't have separate LDAP server / we are using AD for LDAP

 

Thank you

1 ACCEPTED SOLUTION

pedro_rocha

Ok.

 

And have you already configured the SVM and add it to the AD domain?

 

If you have done that (your CIFS clients already are able to authenticate) you don't need to configure that LDAP client thing... just add the SVM to the MS AD domain.

 

You should check how this multiprotocol access will be done and I recommend these KBs:

 

https://kb.netapp.com/Advice_and_Troubleshooting/Data_Storage_Software/ONTAP_OS/Important_considerations_when_setting_up_CIFS_and_name-mapping_in_clus...

 

https://kb.netapp.com/Advice_and_Troubleshooting/Data_Storage_Software/ONTAP_OS/How_to_create_and_understand_vserver_name-mapping_rules_in_clustered_D...

 

https://kb.netapp.com/Advice_and_Troubleshooting/Data_Storage_Software/ONTAP_OS/Understanding_name-mapping_in_a_multiprotocol_environment

 

View solution in original post

3 REPLIES 3

pedro_rocha

Hi,

 

What are you trying to accomplish?

 

Do you want LDAP to manage user access to SVM administration? Or are you willing to configure it to authenticate users that will access volumes?

 

On this SVM, clients will access the same volume via NFS and CIFS concurrently?

TimJMcCuen

Yes clients will access the same volume via NFS and CIFs.    I saw the option "Bind as CIFs server" in the GUI while setting up a LDAP client on a SVM and was wondering if it is preferred to check this box if I am utilizing both CIFs and NFS on this SVM.

pedro_rocha

Ok.

 

And have you already configured the SVM and add it to the AD domain?

 

If you have done that (your CIFS clients already are able to authenticate) you don't need to configure that LDAP client thing... just add the SVM to the MS AD domain.

 

You should check how this multiprotocol access will be done and I recommend these KBs:

 

https://kb.netapp.com/Advice_and_Troubleshooting/Data_Storage_Software/ONTAP_OS/Important_considerations_when_setting_up_CIFS_and_name-mapping_in_clus...

 

https://kb.netapp.com/Advice_and_Troubleshooting/Data_Storage_Software/ONTAP_OS/How_to_create_and_understand_vserver_name-mapping_rules_in_clustered_D...

 

https://kb.netapp.com/Advice_and_Troubleshooting/Data_Storage_Software/ONTAP_OS/Understanding_name-mapping_in_a_multiprotocol_environment

 

Public