Integrating_Dell_EMC_Isilon_OneFS

Integrating_Dell_EMC_Isilon_OneFS#

Create a System Account#

First, create a system account.

An example of a system account for Foreman is available at Creating_a_binddn_for_Foreman as well.

Note the complete DN of your system account. The foreman example uses “uid=foreman,cn=sysaccounts,cn=etc,dc=example,dc=com” (without quotes).

Connect Isilon OneFS to FreeIPA#

Isilon OneFS can be configured to connect to LDAP using one of the two methods:

Using the web UI#

Access –> Authentication Providers –> LDAP
+ Add an LDAP provider
Enter the LDAP provider name of choice.
Server URI: ldaps://fqdn or ldaps://fqdn of FreeIPA server
Make sure the fqdn is resolvable from Isilon!
Base Distinguished Name:enteryourBaseDN
Bind to:entertheDNcreatedabove
Then enter the password for the DN and Isilon OneFS should be connected to FreeIPA via LDAP.

Using the command-line#

Get the status of authentication providers before beginning the configuration: isi auth status
Create a new LDAP provider using the command (replace BaseDN, DN, DNpassword as necessary):
isi auth ldap create test-ldap
–base-dn=”BaseDN”
–bind-dn=”DN”
–bind-password=”DNpassword”
–server-uris=”ldaps:// <ldaps://>”
–groupnet=

Double-checking the LDAP configuration#

Run the ldap search from the Isilon node to test whether the LDAP connection works fine: ldapsearch -x uid=admin
The Isilon+LDAP Howto, “isi auth ldap create” documentation and LDAP troubleshooting guide were used to create this howto.

Notes#

The HowTo above was adapted from a community thread that mentioned using the admin user.
The steps above are not verified as correct but are provided as a base to work from.
The FreeIPA user and development community would appreciate feedback.

References#

The original thread on the FreeIPA mailing list.