Removing PowerHA SystemMirror federated security

Edit online

You can use PowerHA® SystemMirror® to remove LDAP servers, LDAP clients, and EFS from the cluster.

Removing LDAP servers

Note: When you are removing any of the following federated security features, read any warning or error messages carefully and verify that the removal will not cause problems for your cluster environment.
To remove LDAP servers from the cluster, complete the following steps:
  1. From the command line, enter smitty sysmirror.
  2. In SMIT, select System Management (C-SPOC) > Configure LDAP > LDAP server configuration for cluster > Delete the LDAP server from the cluster, and press Enter.
    Note: Completing this task removes the entries from the PowerHA SystemMirror ODM. The data will still be available on the LDAP server if you want to configure it again in the future.

Removing LDAP clients

To remove LDAP clients from the cluster, complete the following steps:
  1. From the command line, enter smitty sysmirror.
  2. In SMIT, select System Management (C-SPOC) > Configure LDAP > LDAP server configuration for cluster > Delete the LDAP clients from the cluster, and press Enter.
Note: The permissions of the root user and user groups are preserved. The execute permission for all PowerHA SystemMirror commands on all nodes in the cluster is removed for other users.

Removing EFS

To remove EFS management from the cluster, complete the following steps.
Note: Before you remove EFS, you can create a backup of the EFS keystore in case you want to reuse it in the future.
  1. From the command line, enter smitty sysmirror.
  2. In SMIT, select System Management (C-SPOC) > Security and Users > EFS management in cluster > Delete EFS keystore, and press Enter.
    Note: You must also remove the EFS from the resource group and the file system.