Skip to main content

LDAP Authentication for IBM Storage DS8000 Systems: Updated for Release 9.3.2

A draft IBM Redpaper publication


Last updated on 24 May 2023

  1. .PDF (6.5 MB)

Share this page:   

IBM Form #: REDP-5460-03

Authors: Bjoern Wesselbaum

    menu icon


    The IBM® Storage DS8000® series includes the option to replace the locally based user ID and password authentication with a centralized directory-based approach.

    This IBM Redpaper publication helps DS8000 storage administrators understand the concepts and benefits of a centralized directory. It provides the information that is required for implementing a DS8000 authentication mechanism that is based on the Lightweight Directory Access Protocol (LDAP).

    Starting with the IBM Storage DS8000 Release 9.1 code, a simpler, native LDAP authentication method is supported along with the former implementation that relies on IBM Copy Services Manager (CSM) acting as a proxy between the DS8000 and external LDAP servers.

    Note: This book was updated in April 2023 to include multifactor authentication (MFA) enhancements for the DS8000 storage system that were delivered with IBM Storage DS8000 Licensed Machine Code (LMC) 7.9.32 (bundle version 89.32.xx.x), referred to as Release 9.3.2.

    Table of Contents

    Chapter 1. IBM DS8000 user authentication

    Chapter 2. Lightweight Directory Access Protocol for IBM DS8000 administrators

    Chapter 3. IBM DS8000 user management

    Chapter 4. Configuring LDAP for DS8000 remote authentication with the DS GUI

    Chapter 5. Implementing LDAP by using the DS Command-Line Interface

    Chapter 6. Implementing LDAP with directory services

    Chapter 7. IBM Resource Access Control Facility

    Chapter 8. Remote authentication with multifactor authentication

    Chapter 9. Migrating from IBM Copy Services Manager based LDAP authentication to native LDAP authentication

    Chapter10. Implementing LDAP through IBM Copy Services Manager

    Appendix A. LDAP planning worksheet

    Appendix B. Troubleshooting

    Appendix C. Exporting secure certificates by using the Google Chrome and Microsoft Edge web browsers


    Special Notices

    The material included in this document is in DRAFT form and is provided 'as is' without warranty of any kind. IBM is not responsible for the accuracy or completeness of the material, and may update the document at any time. The final, published document may not include any, or all, of the material included herein. Client assumes all risks associated with Client's use of this document.