beautypg.com

Modifying an entry, Adding an admin domain or virtual fabric list – Brocade Fabric OS Administrators Guide (Supporting Fabric OS v7.3.0) User Manual

Page 165

background image

Modifying an entry

To modify a directory entry, perform the following steps.

1. Create a .ldif file containing the information to be modified.
2. Enter the ldapmodify command with the -f option specifying the .ldif file you created in step 1.

to delete a user attribute

Adding an Admin Domain or Virtual Fabric list

If your network uses Admin Domains, you can specify a list of Admin Domain numbers to which the
user has access.

Use the brcdAdVfData attribute to map a role to a Virtual Fabric or Admin Domain. To perform this
operation, you must modify the schema to include the definition of the brcdAdVfData attribute and the
definition of a user class that can use this attribute. You can then add this attribute to user entries in the
LDAP directory.

1. In a schema file, assign the brcdAdVfData attribute to a user class.

The following sample schema file defines a new objectClass named "user" with optional attributes
"brcdAdVfData" and "description".

#New attr brcdAdVfData

attributetype ( 1.3.6.1.4.1.8412.100

NAME ( 'brcdAdVfData' )

DESC 'Brocade specific data for LDAP authentication'

EQUALITY caseIgnoreIA5Match

SUBSTR caseIgnoreIA5SubstringsMatch

SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )

objectclass ( 1.3.6.1.4.1.8412.110 NAME 'user'

DESC 'Brocade switch specific person'

SUP top AUXILIARY

MAY ( brcdAdVfData $ description ) )

2. Include the schema file in the slapd.conf file.

The following example slapd.conf line assumes that local.schema contains the attribute definition
provided in

Adding an Admin Domain or Virtual Fabric list

.

include /usr/local/etc/openldap/schema/local.schema

3. Include the brcdAdVfData attribute in a user entry in the LDAP directory.

• If you are using Administrative Domains, enter the value of each Admin Domain separated by an

underscore ( _ ). Each number represents the number of the Admin Domain to which the user has
access. The first such number represents the user’s Home domain.

Example for adding Admin Domains

In the following example, the user is granted access to Admin Domains 0, 10, and 200. Admin
Domain 0 is the domain that the user initially logs in to.

brcdAdVfData: adlist_0_10_200_endAd

• If you are using Virtual Fabrics, enter the value of the logical fabrics to which the user has access.

Up to three value fields can be specified, separated by an semicolons ( ; ):

Modifying an entry

Fabric OS Administrators Guide

165

53-1003130-01

See also other documents in the category Brocade Computer Accessories: