Enabling LDAP on the Masking Engine breaks the masking job communication to the Delphix virtualization engine when used in a combined engine deployment. Combined engine deployments are support in Delphix version 5.0 and later. Enabling LDAP in the masking engine disables local account access, eg. delphix_admin. Users will see critical faults thrown when the virtualization engine tries to access masking job information through the delphix_admin account by default.
Critical faults will appear when the following activity occurs: "Fetching all Masking Jobs from the local Delphix Masking Engine instance" followed by "Ldap authentication fail. Please enter valid Ldap user".
The solution is to enable user credentials suitable for the VE to access the ME, via either:
1. Specify a suitable, existing LDAP account on the VE for access masking job info.
Log into the CLI using the delphix_admin credentials
ssh delphix_admin@yourengineSelect maskingjob > serviceconfig > update
delphix > maskingjobdelphix maskingjob > serviceconfigdelphix maskingjob serviceconfig > updateSet username (which needs to be existing LDAP account username)
delphix maskingjob serviceconfig update *> set username=<existing LDAP account>set password
delphix maskingjob serviceconfig update *> set password=Commit the changes
delphix maskingjob serviceconfig update *> commit
2. Add a "delphix_admin" account in LDAP.
Related Topics
- Masking Engine Terms Overview
- Masking Engine Install, System Configuration, and Network Setup
- Masking Engine Activities