Unsolved
This post is more than 5 years old
89 Posts
0
1376
adding an 'external' user id
This may be a simple solution but it is perplexing me.
We have ldap integration with our xtremio array and I have created 'external' user id's before. When I go to create a new user ID, the new users are created with the external option set to NO.
To me, that means it's not integrated with ldap and when the user changes their AD password, the xtremio password won't reflect the password change.
How do I enable the 'external' = Yes?
Btw, I added the user via the gui interface.
Thanks.
ChrisPy2
12 Posts
0
July 27th, 2017 10:00
LDAP integration negates the need to add local users to the XtremIO. If LDAP is enabled when a user logs in it is first checked against the local users. If one does not exist it will then query LDAP and negotiate from there. If you create a local user it will override the ability to use the LDAP authentication for that user. You are correct that it does not integrate like that with LDAP. The XtremIO does not integrate and provide LDAP administration. To address the last point, when LDAP is queried it authenticates through the password. We have seen where the array will cache the credentials for 24 hours but this was only on older code. The newest code should resolve caching issues.
- ChrisP
JimK513
89 Posts
0
July 27th, 2017 10:00
the xtremIO ldap integration experience hasn't been the best in my experiences. group membership doesn't pass effectively, thus I resort to creating a manual user but I have created manual users where the External=Yes. I just don't recall whether that flag is only set via cli.