Currently I am working with a client that insist on delphix OS accounts to be LDAP accounts. They are using Centrify as their main Identity Management.
Here at the customer, I am trying to understand how Centrify works, so that we can gather what we are required to do to use Delphix with LDAP account in Source and Target Systems.
There will be 1 LDAP user (user_name=delphix)
In Centrify, LDAP users cannot be part of local groups.
LDAP user can use, local commands, programs etc. with "dzdo" command added as a prefix.
Also, for local commands to be run, they need to be specified in the tools configuration.
means that LDAP user can run everything under the specified directory.
So it comes to the point that I need to supply the list of commands delphix agent (LDAP delphix user in this case) needs to run.
As I understand there will also be a need to configure Privileged Profiles in Delphix Engine?
Is that correct? Is there any other clients that used LDAP user in both source and target servers?