The IBM® Storage DS8000® series includes the option to replace the locally based user ID and password authentication with a centralized directory-based approach.
This IBM Redpaper publication helps DS8000 storage administrators understand the concepts and benefits of a centralized directory. It provides the information that is required for implementing a DS8000 authentication mechanism that is based on the Lightweight Directory Access Protocol (LDAP).
Starting with the IBM Storage DS8000 Release 9.1 code, a simpler, native LDAP authentication method is supported along with the former implementation that relies on IBM Copy Services Manager (CSM) acting as a proxy between the DS8000 and external LDAP servers.
Note: This book was updated in April 2023 to include multifactor authentication (MFA) enhancements for the DS8000 storage system that were delivered with IBM Storage DS8000 Licensed Machine Code (LMC) 7.9.32 (bundle version 89.32.xx.x), referred to as Release 9.3.2.
Chapter 1. IBM DS8000 user authentication
Chapter 2. Lightweight Directory Access Protocol for IBM DS8000 administrators
Chapter 3. IBM DS8000 user management
Chapter 4. Configuring LDAP for DS8000 remote authentication with the DS GUI
Chapter 5. Implementing LDAP by using the DS Command-Line Interface
Chapter 6. Implementing LDAP with directory services
Chapter 7. IBM Resource Access Control Facility
Chapter 8. Remote authentication with multifactor authentication
Chapter 9. Migrating from IBM Copy Services Manager based LDAP authentication to native LDAP authentication
Chapter10. Implementing LDAP through IBM Copy Services Manager
Appendix A. LDAP planning worksheet
Appendix B. Troubleshooting
Appendix C. Exporting secure certificates by using the Google Chrome and Microsoft Edge web browsers
The material included in this document is in DRAFT form and is provided 'as is' without warranty of any kind. IBM is not responsible for the accuracy or completeness of the material, and may update the document at any time. The final, published document may not include any, or all, of the material included herein. Client assumes all risks associated with Client's use of this document.