s3user refreshldap
The command refreshes user information on the Data Fabric to match the user information on LDAP.
Syntax
The s3user refreshldap
subcommand is used to refresh the Data Fabric
cluster user information, so as to be in sync with any change to the user
information on the external LDAP server side.
For instance, a user could be moved from a privileged group (group1) to a less privileged group (group2) on the LDAP server. In such a scenario, the Data Fabric cluster would still have stale user information and might still allow privileged access to the user. Hence, a refresh of the LDAP permissions is essential to reflect the change on to Data Fabric.
NOTE
The LDAP refresh is auto-triggered periodically for an LDAP integrated Data
Fabric cluster.maprcli s3user refreshldap
[ -cluster cluster_name ]
[ -username <user_name> ]
[ -all <true|false> ]
Input Parameters
Parameter | Description |
---|---|
clustername |
The cluster on which to run the command. By default, the cluster is the one on which the command is being run. This is an optional parameter. If cluster name not specified, default value is the local cluster. |
username |
The user name whose user information should be fetched or synced from LDAP server. |
all | Use the value true if all LDAP users are to be
refreshed. Default value is false . |