Hybrid Cloud Object Storage
Baremetal
Erasure Code Calculator
Reference Hardware
mc admin idp ldap
Table of Contents
Description
The mc admin idp ldap commands allow you to add, modify, review, list, remove, enable, and disable server configurations to 3rd party Active Directory or LDAP Identity and Access Management (IAM) integrations.
Define configuration settings as an alternative to using environment variables when setting up an AD/LDAP connection.
Note
Configuration settings do not override settings configured as environment variables.
The mc admin idp ldap command has the following subcommands:
Subcommand |
Description |
|---|---|
Create an AD/LDAP IDP server configuration. |
|
Modify an existing AD/LDAP IDP server configuration. |
|
Remove an AD/LDAP IDP server configuration from a deployment. |
|
Outputs a list of the existing AD/LDAP server configurations for a deployment. |
|
Displays details for a specific AD/LDAP server configuration. |
|
Enables an AD/LDAP server configuration. |
|
Disables an AD/LDAP server configuration. |
|
List policy association entities |
Configuration Parameters
The mc admin idp ldap subcommands support configuration parameters.
The parameters define the server’s interaction with the Active Directory or LDAP IAM provider.
For a more detailed explanation of the configuration parameters, refer to the config setting documentation.
Syntax
- add
Create a new set of configurations for an AD/LDAP provider.
You can run the command multiple times to set up multiple Active Directory or LDAP providers.
The following example creates the configuration settings for the
myminiodeployment as defined in a newtest-configsetup for LDAP integration.mc admin idp ldap add \ myminio \ test-config \ server_addr=myldapserver:636 \ lookup_bind_dn=cn=admin,dc=min,dc=io \ lookup_bind_password=somesecret \ user_dn_search_base_dn=dc=min,dc=io \ user_dn_search_filter="(uid=%s)" \ group_search_base_dn=ou=swengg,dc=min,dc=io \ group_search_filter="(&(objectclass=groupofnames)(member=%d))"
The command has the following syntax:
mc [GLOBALFLAGS] admin idp ldap add \ ALIAS \ [CFG_NAME] \ [CFG_PARAM1] \ [CFG_PARAM2]...
Replace
ALIASwith the alias of a MinIO deployment to configure for AD/LDAP integration.Replace
CFG_NAMEwith a unique string for this configuration. If not specified, the command creates default configuration values.Replace the
[CFG_PARAM#]with each of the configuration setting key-value pairs in the format ofPARAMETER="value".
- update
Modify an existing set of configurations for an AD/LDAP provider.
The following example changes two of the configuration settings for the
myminiodeployment as defined in thetest-configsetup for LDAP integration.mc admin idp ldap update \ myminio \ test_config \ lookup_bind_dn=cn=admin,dc=min,dc=io \ lookup_bind_password=somesecret
The command has the following syntax:
mc [GLOBALFLAGS] admin idp ldap update \ ALIAS \ [CFG_NAME] \ [CFG_PARAM1] \ [CFG_PARAM2]...
Replace
ALIASwith the alias of a MinIO deployment to configure for AD/LDAP integration.Replace
CFG_NAMEwith a unique string for this configuration. If not specified, the command updates the default configuration.Replace the
[CFG_PARAM#]with each of the configuration setting key-value pairs to update in the format ofPARAMETER="value".
- remove
Remove an existing set of configurations for an AD/LDAP provider.
The following example removes the
test-configsettings for themyminiodeployment.mc admin idp ldap remove myminio test_config
The command has the following syntax:
mc [GLOBALFLAGS] admin idp ldap remove \ ALIAS \ [CFG_NAME]
Replace
ALIASwith the alias of a MinIO deployment to configure for AD/LDAP integration.Replace
CFG_NAMEwith a unique string for this configuration. If not specified, the command removes the default configurations.
- list
Outputs a list of existing configuration sets for AD/LDAP providers.
The following example outputs a list of all AD/LDAP configuration sets defined for the
myminiodeployment.mc admin idp ldap list myminio
The command has the following syntax:
mc [GLOBALFLAGS] admin idp ldap list ALIAS
Replace
ALIASwith the alias of a MinIO deployment to list AD/LDAP integration for.
- info
Outputs the set of values defined for an existing set of server configurations for an AD/LDAP provider.
The following example outputs the configuration settings defined for the
test_configset of AD/LDAP settings on themyminiodeployment.mc admin idp ldap info myminio test_config
The command has the following syntax:
mc [GLOBALFLAGS] admin idp ldap info \ ALIAS \ [CFG_NAME]
Replace
ALIASwith the alias of a MinIO deployment to configure for AD/LDAP integration.Replace
CFG_NAMEwith a unique string for this configuration. If not specified, the information displays for the default server configuration.
- enable
Begin using an existing set of configurations for an AD/LDAP provider.
The following example enables the server configurations defined as
test_configon themyminiodeployment.mc admin idp ldap enable \ myminio \ test_config
The command has the following syntax:
mc [GLOBALFLAGS] admin idp ldap enable \ ALIAS \ [CFG_NAME]
Replace
ALIASwith the alias of a MinIO deployment to configure for AD/LDAP integration.Replace
CFG_NAMEwith a unique string for this configuration. If not specified, the command enables the default configuration values.
- disable
Stop using a set of configurations for an AD/LDAP provider.
The following example disables the server configurations defined as
test_configon themyminiodeployment.mc admin idp ldap disable \ myminio \ test_config
The command has the following syntax:
mc [GLOBALFLAGS] admin idp ldap disable \ ALIAS \ [CFG_NAME]
Replace
ALIASwith the alias of a MinIO deployment to configure for AD/LDAP integration.Replace
CFG_NAMEwith a unique string for this configuration. If not specified, the command disables the default configuration values.
Global Flags
This command supports any of the global flags.
