s3user refreshldap

The command refreshes user information on the Data Fabric to match the user information on LDAP.

Syntax

The s3user refreshldap subcommand is used to refresh the Data Fabric cluster user information, so as to be in sync with any change to the user information on the external LDAP server side.

For instance, a user could be moved from a privileged group (group1) to a less privileged group (group2) on the LDAP server. In such a scenario, the Data Fabric cluster would still have stale user information and might still allow privileged access to the user. Hence, a refresh of the LDAP permissions is essential to reflect the change on to Data Fabric.

NOTE
The LDAP refresh is auto-triggered periodically for an LDAP integrated Data Fabric cluster.
maprcli s3user refreshldap
                [ -cluster cluster_name ]
                [ -username <user_name> ]
                [ -all <true|false> ]

Input Parameters

Parameter Description
clustername The cluster on which to run the command. By default, the cluster is the one on which the command is being run. This is an optional parameter. If cluster name not specified, default value is the local cluster.
username The user name whose user information should be fetched or synced from LDAP server.
all Use the value true if all LDAP users are to be refreshed. Default value is false.