The IBM® Storage DS8000® series includes the option to replace the locally based user ID and password authentication with a centralized directory-based approach.

This IBM Redpaper publication helps DS8000 storage administrators understand the concepts and benefits of a centralized directory. It provides the information that is required for implementing a DS8000 authentication mechanism that is based on the Lightweight Directory Access Protocol (LDAP).

Starting with the IBM Storage DS8000 Release 9.1 code, a simpler, native LDAP authentication method is supported along with the former implementation that relies on IBM Copy Services Manager (CSM) acting as a proxy between the DS8000 and external LDAP servers.

Note: This book was updated in April 2023 to include multifactor authentication (MFA) enhancements for the DS8000 storage system that were delivered with IBM Storage DS8000 Licensed Machine Code (LMC) 7.9.32 (bundle version 89.32.xx.x), referred to as Release 9.3.2.

Chapter 1. IBM DS8000 user authentication

Chapter 2. Lightweight Directory Access Protocol for IBM DS8000 administrators

Chapter 3. IBM DS8000 user management

Chapter 4. Configuring LDAP for DS8000 remote authentication with the DS GUI

Chapter 5. Implementing LDAP by using the DS Command-Line Interface

Chapter 6. Implementing LDAP with directory services

Chapter 7. IBM Resource Access Control Facility

Chapter 8. Remote authentication with multifactor authentication

Chapter 9. Migrating from IBM Copy Services Manager based LDAP authentication to native LDAP authentication

Chapter10. Implementing LDAP through IBM Copy Services Manager

Appendix A. LDAP planning worksheet

Appendix B. Troubleshooting

Appendix C. Exporting secure certificates by using the Google Chrome and Microsoft Edge web browsers