This post is more than 5 years old
6 Posts
0
7223
September 13th, 2013 09:00
Unisphere for VMAX vApp LDAP Integration
Anyone setup the ldap integration for Unisphere vApp? All I get is an "Invalid Options" when trying to setup ldap, and the product guide for 1.6 or the online help is pretty useless. We are running v1.6.4., which was only release a few weeks ago.
Another issue I ran into was I tried to manually add the gatekeeper rdms to the virtual appliance itself throught vSphere client, but the appliance never recognized the rdms, they only way around was to add the gatekeepers from the vApp web portal.
Thanks,
No Events found!
hyang1
6 Posts
0
September 16th, 2013 10:00
I figured it out, I did a ping from the Appliance GUI, to the ldap server fqdn and it did not respond. I did a ping to the address and it responded. I changed the ldap settings to go by IP instead of DNS name and it worked. Not sure why it is not registering in dns correctly but, I was able to setup groups authenication to Active Directory LDAP works.
hyang1
6 Posts
0
September 16th, 2013 08:00
mb_live
33 Posts
0
September 16th, 2013 08:00
Right away, I see your administrator Binding DN is way off.
It should be more of something like the follow Domain\Admin
hyang1
6 Posts
0
September 16th, 2013 08:00
Yeah, i have not been able to find anything regarding unisphere for vmax, like you said everything looks like it is for the vnx series. I guess the biggest part is, when trying to setup ldap, it doesnt state what it doesnt like, it just states "invalid options." I'm pretty much ready to give EMC a call.
mb_live
33 Posts
0
September 16th, 2013 08:00
I have got the first step of LDAP working with Unisphere for VMAX, same version as you, but not the vApp.
I am able to login with my domain username & password, but I haven't been able to get any authentication to the frames.
Maybe I can help you with your settings to get initially started.
Most of the LDAP information on this site seems to be around the vnx and not much regarding the VMAX. Looks like we're on our own!
mb_live
33 Posts
0
September 16th, 2013 08:00
If you are comfortable with it, you can paste what you have already and I can see where it differs from mine which is currently working.
hyang1
6 Posts
0
September 16th, 2013 08:00
i think i tried domain\admin-user and got the same answer, let me try it again
update:
mb_live
33 Posts
0
September 16th, 2013 09:00
That looks good to be.
I believe you are right in opening an EMC case now. That is what I am in the process of in getting the groups to search for the correct members.
mb_live
33 Posts
0
September 16th, 2013 10:00
How did you setup the groups to have authentication for the storage arrays?
That is my issue. I can get logged in with my domain user account. I added an ldap authorization group which I am a member of and gave that group admin over all the frames, but when I login, I do not have visibility to any frames.
hyang1
6 Posts
0
September 16th, 2013 10:00
I didnt have to do that, i just added one group (SAN group) under home>administration>security>authenication>ldap-ssl>advance and all users in that group have admin rights over both our frames.