HP UX LDAP-UX Integration Software manual

Page 195

 

 

 

Mozilla LDAP C SDK

 

 

The Mozilla LDAP C SDK File Components

Table 7-3

 

Mozilla LDAP C SDK API Header Files (Continued)

 

 

 

 

 

 

Header Files

Description

 

 

 

 

 

 

/usr/include/disptmpl.h

Support for LDAP display

 

 

 

templates. Allows applications to

 

 

 

convert LDAP entries into

 

 

 

displayable text strings and HTML.

 

 

 

 

 

 

/usr/include/lber.h

Support for creating messages that

 

 

 

follow the Basic Encoding Rules

 

 

 

syntax. These APIs are used when

 

 

 

building extended LDAP operations

 

 

 

or controls. This file is a support file

 

 

 

for ldap.h and does not need to

 

 

 

included in source code.

 

 

 

 

 

 

/usr/include/ldap-standard.h

Contains basic LDAP defines. This

 

 

 

file is a support file for ldap.h and

 

 

 

does not need to be included in

 

 

 

source code.

 

 

 

 

 

 

/usr/include/ldap-platform.h

Contains platform specific

 

 

 

information for compiling on a

 

 

 

variety of platforms. This file is a

 

 

 

support file for ldap.h and does not

 

 

 

need to be included in source code.

 

 

 

 

 

 

/opt/ldapux/include/ldap-to-be-depreca

LDAP APIs that will not be

 

 

ted.h

available in the future. Do not use

 

 

 

this header file for newly created

 

 

 

LDAP-enabled applications.

 

 

 

 

 

 

/opt/ldapux/include/ldap-deprecated.h

LDAP APIs that have been

 

 

 

deprecated. Do not use.

 

 

 

 

 

 

 

 

NOTE

 

If you attempt to use the LDAP C SDK in your code , you only need to

 

 

put in “#include <ldap.h>” in the code and compile with the -lldap

 

 

parameter to load the LDAP C SDK library.

 

 

 

 

Chapter 7

181

Page 194 Page 196
Image 195
Page 194 Page 196
Contents Manufacturing Part Number J4269-90071 E0207 EditionLegal Notices Contents Administering LDAP-UX Client Services Command and Tool Reference User Tasks Tables Viii Figures Figures New and Changed Documentation in This Edition Intended AudienceWhat’s in This document Publishing HistoryXiii HP Encourages Your Comments Typographical ConventionsChapter Overview of LDAP-UX Client ServicesSimplified NIS Environment Overview of LDAP-UX Client ServicesIntroduction How LDAP-UX Client Services WorksTraffic from replica updates Simplified LDAP-UX Client Services EnvironmentExamples of Commands and Subsystems Commands that use Commands that use PAMThat use PAM and NSS Login, ftpd Ls, who Overview of LDAP-UX Client Services Local Start-up File and the Configuration Profile Overview of LDAP-UX Client Services Chapter Before You Begin LDAP-UX Client ServicesSummary of Installing and Configuring Summary of Installing and ConfiguringOptionally modify the /etc/opt/ldapux/pamauthz.policy Plan Your Installation Plan Your InstallationStill log in to the system Share user names and passwords with other applications, Example Directory Structure Plan Your Installation Plan Your Installation Section must be set to yes. If the start option is enabled, Plan Your Installation Install LDAP-UX Client Services on a Client Install LDAP-UX Client Services on a ClientConfigure Your Directory Configure Your DirectoryStep Configure Your Directory Grant read access of all attributes of the posix schema Configure Your Directory Import Name Service Data into Your Directory Import Name Service Data into Your DirectoryDirectory Steps to Importing Name Service Data into YourConfigure the LDAP-UX Client Services Configure the LDAP-UX Client ServicesConfigure the LDAP-UX Client Services Quick Configuration Required to start the services Simple Sasl DIGEST-MD5 Configuration Parameter Default Values Configure the LDAP-UX Client Services Custom Configuration Specify up to three directory hosts, to be searched in order Specify the service you want to map? Specify the attribute you want to map You type 0 to exit this menu for the following question Answer Y instead of the default N For the question You want to create a custom search descriptor for Configure the LDAP-UX Client Serivces with SSL Support Configure the LDAP-UX Client Serivces with SSL SupportSteps to Download the CA Certificate from Mozilla Browser Configuring the LDAP-UX Client to Use SSLMail users, and Trust the CA to identify software developers Use the rm command to remove the old database files Steps to create database files using the certutil utilityConfigure the LDAP-UX Client Serivces with SSL Support Configure LDAP-UX Client Services with Publickey Support Configure LDAP-UX Client Services with Publickey SupportEnhanced Publickey-LDAP Software for HP-UX 11i v1 or JuneOctober Extending the Publickey Schema into Your Directory Admin Proxy UserConfiguring an Admin Proxy User Using ldapproxyconfig An Example Setting ACI for Key ManagementPassword for an Admin Proxy User Setting ACI for an Admin Proxy UserSetting ACI for a User Configuring serviceAuthenticationMethodProcedures Used to Configure serviceAuthenticationMethod Authentication MethodsServiceAuthenticationMethodkeyservsasl/digest-md5 Configuring Name Service Switch Configure LDAP-UX Client Services with Publickey Support AutoFS Support Automount SchemasAutoFS Support AutoFS Patch RequirementSchema New Automount SchemaAn Example NisObject Automount Schema Obsolete Automount Schema Removing The Obsolete Automount SchemaLimitations Attribute Mappings New Automount Attribute NisObject Automount Attribute MappingsAutoFS Migration Scripts Migration Scripts DescriptionEnvironment Variables General Syntax For Migration Scripts ExamplesSyntax Migrateautomount.pl ScriptAutoFS Support Following shows the /tmp/autoindirect.ldif file Migratenisautomount.pl ScriptFollowing shows the nispautomap.ldif file Migratenispautofs.pl ScriptVerify the LDAP-UX Client Services Verify the LDAP-UX Client ServicesMaking sure the output is as expected Verify the LDAP-UX Client Services #cat /etc/nsswitch.conf Configure Subsequent Client Systems Configure Subsequent Client SystemsChange the current configuration Download the Profile Periodically Download the Profile PeriodicallyCrontab crontab.profile Use r-command for Pamldap Use r-command for Pamldap#passwordas = Password, and turning on the rcommand option for pamldap Use r-command for Pamldap Chapter Ldap Printer Configurator Overview DefinitionsOverview System How the Ldap Printer Configurator works How the Ldap Printer Configurator worksSystem administrator manually adds or removes printers to Printer Configurator Architecture Printer Configuration Parameters Printer Configuration ParametersPrinter Schema Printer SchemaAn Example Printer Schema Managing the LP printer configuration Managing the LP printer configurationExample Managing the LP printer configuration Managing the LP printer configuration Limitations of Printer Configurator Limitations of Printer ConfiguratorLimitations of Printer Configurator Chapter Administering LDAP-UX Client Using The LDAP-UX Client Daemon Using The LDAP-UX Client DaemonOverview Client Daemon performance LdapclientdStarting the client Controlling the clientDiagnostics Command optionsMissing settings Ldapclientd.confConfiguration file syntax Opt/ldapux/config/setup Using The LDAP-UX Client Daemon 100 Chapter 101 102 Chapter 103 Configuration File Auditing Integrating with Trusted ModeFeatures and Limitations Integrating with Trusted ModePassword and Account Policies PAM Configuration File OthersChapter 107 Configuration Parameter Chapter 109 Pamauthz Login Authorization EnhancementPolicy And Access Rules Pamauthz Login Authorization EnhancementPamauthz Environment How Login Authorization WorksChapter 111 Policy FileActiontyperule Constructing an Access Rule in pamauthz.policyFields in an Access Rule Field Syntax in an Access RuleChapter 113 Action No value is requiredChapter 115 116 Chapter 117 Policy ValidatorAdding a Directory Replica Adding a Directory ReplicaAn Example of /etc/opt/ldapux/pamauthz.policy File Displaying the Proxy User’s DN Displaying the Proxy User’s DNChapter 119 Verifying the Proxy User Verifying the Proxy UserCreating a New Proxy User ExampleChapter 121 Displaying the Current ProfileCreating a New Profile Displaying the Current ProfileChanging Which Profile a Client Is Using Modifying a ProfileModifying a Profile Changing from Anonymous Access to Proxy Access Changing from Anonymous Access to ProxyAccess Changing from Proxy Access to Anonymous AccessChanging from Proxy Access to Anonymous Access Chapter 125 Performance ConsiderationsMinimizing Enumeration Requests Performance ConsiderationsClient Daemon Performance Ldapclientd CachingClient Daemon Performance Chapter 127 Map Name Benefits Example Side-Effect128 Chapter 129 Ldapclientd Persistent Connections Chapter 131 TroubleshootingTroubleshooting Enabling and Disabling LDAP-UX LoggingTIP Enabling and Disabling PAM LoggingNetscape Directory Server Log Files User Cannot Log on to Client SystemChapter 133 134 Chapter 135 You should get output like the following136 Chapter 137 Command and Tool ReferenceLDAP-UX Client Services Components LDAP-UX Client Services ComponentsLDAP-UX Client Services Components Description LDAP-UX Client Services Components Component DescriptionChapter 139 PA machine Files Description LDAP-UX Client Services Libraries on the HP-UX 11.0 or 11iLDAP-UX Client Services Libraries on the HP-UX 11i v2 PA Machine Files DescriptionChapter 141 LDAP-UX Client Services Libraries on the HP-UX 11i v2 IA Client Management Tools Client Management ToolsCreateprofileentry Tool Createprofilecache ToolDisplayprofilecache Tool Createprofileschema ToolChapter 145 Getprofileentry ToolGetprofileentry -s NSS Ldapproxyconfig ToolChapter 147 File148 Chapter 149 Beq Search Tool SyntaxBeq Search Tool Chapter 151 Examples152 Chapter 153 Uid2dn ToolLdap Directory Tools Getattrmap.pl ToolLdap Directory Tools Chapter 155 Ldapentry156 Chapter 157 LdapsearchLdapmodify Ldapdelete Certutil Adding One or More Users Adding One or More UsersChapter 159 Naming Context Name Service Migration ScriptsName Service Migration Scripts Default Naming ContextMigrating All Your Files Migrating Individual FilesChapter 161 General Syntax for Perl Migration Scripts Migration ScriptsMigration Scripts Script Name Description Chapter 163 Script Name Description164 Chapter 165 Ldappasswd Command Ldappasswd CommandChapter 167 168 Chapter 169 To Change PasswordsCannot Change Passwords on Replica Servers To Change PasswordsChapter 171 172 To Change Personal Information To Change Personal InformationChapter 173 174 Chapter 175 Mozilla Ldap C SDK176 Files Description Mozilla Ldap C SDK File ComponentsMozilla Ldap C SDK File Components Mozilla Ldap C SDK File Components on the PA machineMozilla Ldap C SDK File Components on the IA machine Chapter 179 Header Files Description Mozilla Ldap C SDK API Header FilesChapter 181 182 Appendix a 183 Table A-1 LDAP-UX Client Services Configuration WorksheetAppendix a Appendix a 185 186 Appendix B 187 ClassesProfile Attributes Profile AttributesAppendix B Appendix B 189 190 Appendix C 191 fileAppendix C Sample /etc/pam.ldap.trusted fileAppendix C 193 194 Glossary 195 PAM Authorization Service ModuleGlossary Ldap Data Interchange Format LdifGlossary SlapdIndex SymbolsNIS, 2, 12, 15 Pwget, 4, 69 200
Related manuals
Manual 26 pages 60.39 Kb Manual 65 pages 7.83 Kb
Top Page Image Contents