Enabling Secondary Group Lists with LDAP

Enable the lookup of secondary group lists from an LDAP server for a File Storage export.

Using secondary group lists requires additional configuration and several prerequisites. For more information, see Using LDAP for Authorization.

1. On the Mount Targets list page, select the mount target that you want to work with. If you need help finding the list page or the mount target, see Listing Mount Targets.
2. On the details page, select Exports.
3. Select the export that you want to update.
4. On the export's details page, select Edit next to Use LDAP for group list.
5. In the Edit Use LDAP for group list dialog box, select Use LDAP for group list and select Save.
Use the fs export update command and include the --is-idmap-groups-for-sys-auth parameter to update an export to use LDAP:
oci fs export update --export-id <export_OCID> --is-idmap-groups-for-sys-auth true
For a complete list of parameters and values for CLI commands, see the CLI Command Reference.
Run the UpdateExport operation with the isIdmapGroupsForSysAuth parameter to update an export.

For information about using the API and signing requests, see REST API documentation and Security Credentials. For information about SDKs, see SDKs and the CLI.