What users and roles do I need to create?

This topic provides an overview of users and roles as they relate to the SAN File System.

A SAN File System administrator is the same as a user in the LDAP database entries. A user can use the administrative command-line interface and the SAN File System console.

SAN File System administrative users must have an assigned role. The role determines the scope of commands which an administrator can execute. SAN File System supports a predefined set of roles. These roles are Monitor, Operator, Backup, and Administrator. You need to define these roles in your LDAP server.

You also need to define all of the administrative users that will need to access the SAN File System. The role that you define for each user determines the level of access for that user.

Some configuration of your LDAP server is required for SAN File System to use LDAP for authenticating SAN File System administrators. SAN File System requires an authorized LDAP user name that can browse the LDAP tree where the users and roles are stored. If a secure LDAP connection is required, then the SSL certificate is needed. Fill in the tables below with your values.

You will also need to know the name of your LDAP certificate, which is used to create the Truststore. Get this information from your LDAP administrator.

Use the LDAP configuration worksheet to collect information for setting up users and roles in the LDAP server.

Parent topic: What do I need to configure LDAP?

Library | Support | Terms of use | Feedback
(C) Copyright IBM Corporation 2003, 2004. All Rights Reserved.
IBM TotalStorage SAN File System v2.2