DB2 on AIX - Authenticate against Active Directory

**4.spam@mail.ru** · Aug 15 '08, 01:15 PM

Re: DB2 on AIX - Authenticate against Active Directory

On Aug 14, 9:23 pm, LIKKLE MAN <domenico.copp. ..@gmail.comwro te:

Can anyone point me to an article that explains how to get an instance
of DB2 running on AIX 5.x authenticating against an Active Directory
server.
>
There is no issue securing AIX itself in this manner, but is this even
possible in the AIX world from a db perspective?
>
Thanks

1. Download security modules from here:

https://www14.software.ibm.com/webapp/iwm/web/preLogin.do?source=swg-dm-db2ldap

2. Read the readme.ldap file
3. Use such IBMLDAPSecurity .ini file assuming that you have:
Domain name: db2.swg.ru.ibm. com
PDC: db2pdc.db2.swg. ru.ibm.com
Some domain user for connection to PDC:
username: db2pdc\db2user
password: password
--- IBMLDAPSecurity .ini start (don't include this line into the file)
---
LDAP_HOST = db2pdc.db2.swg. ru.ibm.com

USER_OBJECTCLAS S = user
USER_BASEDN = CN=Users,DC=db2 ,DC=swg,DC=ru,D C=ibm,DC=com

USERID_ATTRIBUT E = sAMAccountName
AUTHID_ATTRIBUT E = sAMAccountName

GROUP_OBJECTCLA SS = group
GROUP_BASEDN = CN=Users,DC=db2 ,DC=swg,DC=ru,D C=ibm,DC=com
GROUPNAME_ATTRI BUTE = cn

GROUP_LOOKUP_ME THOD = USER_ATTRIBUTE
GROUP_LOOKUP_AT TRIBUTE = memberOf
;NESTED_GROUPS = true

SEARCH_DN = CN=db2user,CN=U sers,DC=db2,DC= swg,DC=ru,DC=ib m,DC=com
SEARCH_PW = password
--- IBMLDAPSecurity .ini end (don't include this line into the file)
---

Sincerely,
Mark B.

**LIKKLE MAN** · Aug 19 '08, 08:23 PM

Re: DB2 on AIX - Authenticate against Active Directory

On Aug 15, 9:13 am, 4.s...@mail.ru wrote:

On Aug 14, 9:23 pm, LIKKLE MAN <domenico.copp. ..@gmail.comwro te:
>

Can anyone point me to an article that explains how to get an instance
of DB2 running on AIX 5.x authenticating against an Active Directory
server.

>

There is no issue securing AIX itself in this manner, but is this even
possible in the AIX world from a db perspective?

>

Thanks

>
1. Download security modules from here:https://www14.software.ibm.com/webap...do?source=swg-...
2. Read the readme.ldap file
3. Use such IBMLDAPSecurity .ini file assuming that you have:
Domain name: db2.swg.ru.ibm. com
PDC: db2pdc.db2.swg. ru.ibm.com
Some domain user for connection to PDC:
username: db2pdc\db2user
password: password
--- IBMLDAPSecurity .ini start (don't include this line into the file)
---
LDAP_HOST = db2pdc.db2.swg. ru.ibm.com
>
USER_OBJECTCLAS S = user
USER_BASEDN = CN=Users,DC=db2 ,DC=swg,DC=ru,D C=ibm,DC=com
>
USERID_ATTRIBUT E = sAMAccountName
AUTHID_ATTRIBUT E = sAMAccountName
>
GROUP_OBJECTCLA SS = group
GROUP_BASEDN = CN=Users,DC=db2 ,DC=swg,DC=ru,D C=ibm,DC=com
GROUPNAME_ATTRI BUTE = cn
>
GROUP_LOOKUP_ME THOD = USER_ATTRIBUTE
GROUP_LOOKUP_AT TRIBUTE = memberOf
;NESTED_GROUPS = true
>
SEARCH_DN = CN=db2user,CN=U sers,DC=db2,DC= swg,DC=ru,DC=ib m,DC=com
SEARCH_PW = password
--- IBMLDAPSecurity .ini end (don't include this line into the file)
---
>
Sincerely,
Mark B.

Thank you very much!

DB2 on AIX - Authenticate against Active Directory

DB2 on AIX - Authenticate against Active Directory

Comment

Comment