Top
Cloud Services Management V1.1.0 Installation Guide
FUJITSU Software
Appendix C Modifying Installation Environments > C.2 Modifying Installation Environments of Management Servers > C.2.8 Changing the Directory Service to Integrate
PreviousNext

C.2.8 Changing the Directory Service to Integrate

This section explains how to change the directory service to coordinate with SVOM.

When Changing from the Directory Service Provided with SVOM to Active Directory

Note

When entries to be linked with the user information of Cloud Services Management already exist on Active Directory, it is not necessary to perform steps 1, 3, 5, and 6.

See

  • For details on steps 3 and 4, refer to the manuals for SVOM.

  • For details on steps 5 and 6, refer to the manuals for Active Directory.

  1. Export detailed information of all users of Cloud Services Management by executing the user operation command.

    For details on the user operation command, refer to "User Operation Commands" in the "Cloud Services Management Operation Guide".

  2. Stop Cloud Services Management.

    For details regarding stopping Cloud Services Management, refer to "Starting and Stopping" in the "FUJITSU Software Cloud Services Management Operation Guide".

  3. Export the user information added to the directory service provided with SVOM in the LDIF format.

    Example

    The following shows an example of the export command.

    >ldapsearch -h localhost:1473 -D "uid=admin,ou=system" -w password -s sub -b "ou=users,dc=fujitsu,dc=com" > csmusers.ldif <RETURN>

    For details on the export command, refer to the manuals for SVOM.

  4. Change the directory service coordinated with SVOM from the one provided with SVOM to Active Directory.

  5. Modify the user information LDIF file that was exported in step 3 to make it usable on Active Directory.

    1. Delete the entries which have cn attributes that do not match any of the userId values in the information that was exported in step 1.

    2. Modify the value of the dn attribute for each entry according to the base name of the new directory service.

    3. Delete the following attributes:

      • sn

      • uid

      • userPassword

    4. Add the following attributes to the user entries:

      • userPrincipalName (Specify the same value as the cn attribute)

      • userAccountControl (Specify "512")

      • unicodePwd

    5. Modify the value of the objectClass attribute.

      Modify "inetOrgPerson" to "user".

  6. Import the LDIF file that was created in step 4 into Active Directory.

    Example

    The following shows an example of the import command.

    >ldifde -i -e -k -t 636 -f csmusers.ldif <RETURN>

    For details on the import command, refer to the manuals for Active Directory.

  7. Modify the SVOM communication settings for Cloud Services Management.

    For details on the configuration procedure, refer to "3.1.1 Configuration of Communications with SVOM".

  8. Start Cloud Services Management.

    See

    For details regarding starting Cloud Services Management, refer to "Starting and Stopping" in the "FUJITSU Software Cloud Services Management Operation Guide".


When Changing to the Directory Service Provided with SVOM

See

  • For details on step 3, refer to the manuals for Active Directory.

  • For details on steps 4, 5, and 6, refer to the manuals for SVOM.

  1. Export detailed information of all users of Cloud Services Management by executing the user operation command.

    For details on the user operation command, refer to "User Operation Commands" in the "Cloud Services Management Operation Guide".

  2. Stop Cloud Services Management.

    For details regarding stopping Cloud Services Management, refer to "Starting and Stopping" in the "FUJITSU Software Cloud Services Management Operation Guide".

  3. Export the user information added to Active Directory.

    Example

    The following shows an example of the export command.

    >ldifde -f csmusers.ldif <RETURN>

    See

    For details on the export command, refer to the manuals for Active Directory.

  4. Change the directory service coordinated with SVOM from Active Directory to the one provided with SVOM.

  5. Modify the user information LDIF file that was exported in step 3 to make it usable on the directory service provided with SVOM.

    1. Delete the entries which have cn attributes that do not match any of the userId values in the information that was exported in step 1.

    2. Modify the value of the dn attribute for each entry according to the base name of the new directory service.

    3. Delete the attributes other than the following attributes:

      • dn

      • objectClass

      • cn

      • changetype

    4. Add the following attributes to the user entries:

      • sn (Specify the same value as the cn attribute)

      • uid (Specify the same value as the cn attribute)

      • userPassword

    5. Modify the value of the objectClass attribute.

      Modify "user" to "inetOrgPerson".

  6. Import the LDIF file that was created in step 4 into the directory service.

    Example

    The following shows an example of the import command.

    >ldapmodify -h localhost:1473 -f csmusers.ldif -D "uid=admin,ou=system" -w password -c <RETURN>

    See

    For details on the import command, refer to the manuals for SVOM.

  7. Modify the SVOM communication settings for Cloud Services Management.

    For details on the configuration procedure, refer to "3.1.1 Configuration of Communications with SVOM".

  8. Start Cloud Services Management.

    For details regarding starting Cloud Services Management, refer to "Starting and Stopping" in the "FUJITSU Software Cloud Services Management Operation Guide".

PreviousNext
Copyright 2015-2016 FUJITSU LIMITED