Documentation
Customer Login
Product
Multi-Cloud
MinIO for VMware Tanzu MinIO for OpenShift MinIO for SUSE Rancher MinIO for Amazon Elastic Kubernetes Service MinIO for Azure Kubernetes Service MinIO for Google Kubernetes Engine
Features
Active Active Replication Identity & Access Management Encryption Bucket & Object Immutability Bucket & Object Versioning Data Life Cycle Management & Tiering Automated Data Management Interfaces Monitoring Scalability AWS S3 Compatibility
Hybrid Cloud Object Storage Hybrid Cloud Object Storage
Overview Architecture
Baremetal Baremetal
Overview Architecture
Erasure Code Calculator Erasure Code Calculator Reference Hardware Reference Hardware
Solutions
Integrations Browse our vast portfolio of integrations VMware Discover how MinIO integrates with VMware across the portfolio from the Persistent Data platform to TKGI and how we support their Kubernetes ambitions. Splunk Find out how MinIO is delivering performance at scale for Splunk SmartStores Veeam Learn how MinIO and Veeam have partnered to drive performance and scalability for a variety of backup use cases. Azure to AWS S3 Gateway Learn how MinIO allows Azure Blob to speak Amazon’s S3 API HDFS Migration Modernize and simplify your big data storage infrastructure with high-performance, Kubernetes-native object storage from MinIO. Teradata Discover why MinIO is the Native Object Store (NOS) of choice for at-scale Teradata deployments
Docs Blog Resources Partner Pricing Download

Documentation

MinIO Object Storage for Linux

mc idp ldap

New in version RELEASE.2023-05-26T23-31-54Z: mc idp ldap and its subcommands replace mc admin idp ldap.

Description

The mc idp ldap commands allow you to manage configurations to 3rd party Active Directory or LDAP Identity and Access Management (IAM) integrations.

Define configuration settings as an alternative to using environment variables when setting up an AD/LDAP connection. The mc idp ldap commands are only supported against MinIO deployments.

Note

MinIO AD/LDAP environment variables override their corresponding configuration settings as modified or set by this command.

The mc idp ldap command has the following subcommands:

Subcommand

Description

mc idp ldap add

Create an AD/LDAP IDP server configuration.

mc idp ldap update

Modify an existing AD/LDAP IDP server configuration.

mc idp ldap ls

Lists AD/LDAP server configurations.

mc idp ldap rm

Remove an AD/LDAP IDP server configuration from a deployment.

mc idp ldap info

Displays details for a specific AD/LDAP server configuration.

mc idp ldap enable

Enables an AD/LDAP server configuration.

mc idp ldap disable

Disables an AD/LDAP server configuration.

mc idp ldap policy subcommands

Manage AD/LDAP policies and entity mappings.

Configuration Parameters

The mc idp ldap subcommands support configuration parameters. The parameters define the server’s interaction with the Active Directory or LDAP IAM provider.

For a more detailed explanation of the configuration parameters, refer to the config setting documentation.

Syntax

add

Create a new configuration for an AD/LDAP provider. MinIO supports no more than one (1) AD/LDAP provider per deployment.

The following example sets the AD/LDAP configuration settings for the myminio deployment.

 mc idp ldap add                                                            \
             myminio                                                        \
             server_addr=myldapserver:636                                   \
             lookup_bind_dn=cn=admin,dc=min,dc=io                           \
             lookup_bind_password=somesecret                                \
             user_dn_search_base_dn=dc=min,dc=io                            \
             user_dn_search_filter="(uid=%s)"                               \
             group_search_base_dn=ou=swengg,dc=min,dc=io                    \
             group_search_filter="(&(objectclass=groupofnames)(member=%d))"

The command has the following syntax:

mc [GLOBALFLAGS] idp ldap add               \
                          ALIAS             \
                          [CFG_PARAM1]      \
                          [CFG_PARAM2]...

  • Replace ALIAS with the alias of a MinIO deployment to create for AD/LDAP integration.

  • Replace the [CFG_PARAM#] with each of the configuration setting key-value pairs in the format of PARAMETER="value".

update

Modify an existing set of configurations for an AD/LDAP provider.

The following example changes two of the AD/LDAP configuration settings for the myminio deployment.

mc idp ldap update                                \
            myminio                               \
            lookup_bind_dn=cn=admin,dc=min,dc=io  \
            lookup_bind_password=somesecret

The command has the following syntax:

mc [GLOBALFLAGS] idp ldap update           \
                          ALIAS            \
                          [CFG_PARAM1]     \
                          [CFG_PARAM2]...

  • Replace ALIAS with the alias of a MinIO deployment to update for AD/LDAP integration.

  • Replace the [CFG_PARAM#] with each of the configuration setting key-value pairs to update in the format of PARAMETER="value".

ls, list

Lists the existing set of configurations for an AD/LDAP provider.

The following example lists the AD/LDAP configuration settings for the myminio deployment.

mc idp ldap ls myminio

The command has the following syntax:

mc [GLOBALFLAGS] idp ldap ls ALIAS

  • Replace ALIAS with the alias of a MinIO deployment to list the AD/LDAP integration.

rm, remove

Remove the existing configuration for an AD/LDAP provider.

The following example removes the AD/LDAP provider settings for the myminio deployment.

mc idp ldap rm myminio

The command has the following syntax:

mc [GLOBALFLAGS] idp ldap rm     \
                          ALIAS

  • Replace ALIAS with the alias of a MinIO deployment to remove the AD/LDAP integration.

info

Outputs the current configuration for an AD/LDAP provider on a specified MinIO deployment.

The following example outputs the AD/LDAP configuration settings on the myminio deployment.

mc idp ldap info myminio

The command has the following syntax:

mc [GLOBALFLAGS] idp ldap info   \
                          ALIAS

  • Replace ALIAS with the alias of a MinIO deployment to retrieve info on the AD/LDAP integration.

enable

Enables the currently configured AD/LDAP provider.

The following example enables the AD/LDAP configuration on the myminio deployment.

mc idp ldap enable   \
            myminio

The command has the following syntax:

mc [GLOBALFLAGS] idp ldap enable  \
                          ALIAS

  • Replace ALIAS with the alias of a MinIO deployment to enable the AD/LDAP integration.

disable

Disables the currently configured AD/LDAP provider.

The following example disables the AD/LDAP configurations on the myminio deployment.

mc idp ldap disable  \
            myminio

The command has the following syntax:

mc [GLOBALFLAGS] idp ldap disable  \
                          ALIAS

  • Replace ALIAS with the alias of a MinIO deployment to disable the AD/LDAP integration.

Global Flags

This command supports any of the global flags.

This work is licensed under a Creative Commons Attribution 4.0 International License. 2020-Present, MinIO, Inc. Creative Commons License