HP UX LDAP-UX Integration Software manual Configure the LDAP-UX Client Services, see the Configure

Page 40

Migrating NIS+ to LDAP

Configuring LDAP-UX Client Services

NOTE

You must run the setup program to configure the LDAP-UX Client

 

Services. Otherwise, the LDAP-UX Client Services will not work

 

properly. For detailed procedures on how to run setup program to

 

configure the LDAP-UX Client Services, see the “Configure the

 

LDAP-UX Client Services” section in the LDAP-UX Client Services

 

B.04.00 Administrator’s Guide available at http://www.docs.hp.com.

 

 

Configure the Pluggable Authentication Module (PAM) by modifying the file /etc/pam.conf.

Save a copy of /etc/pam.conf and modify the original file to add /usr/lib/security/libpam_ldap.1 on the HP-UX 11i v1 system or libpam_ldap.so.1 on the HP-UX 11i v2 system where it is appropriate. If your system is in the standard mode, see /etc/pam.ldap for an example. If your system is in the Trusted Mode, see /etc/pam.ldap.trusted for an example.

Configure the Name Service Switch (NSS) by modifying the file

/etc/nsswitch.conf.

Save a copy of /etc/nsswitch.conf file and modify the original to add ldap to support name services. See /etc/nsswitch.ldap for a sample.

Optionally modify the disable_uid_range flag in the

/etc/opt/ldapux/ldapux_client.conf file to disable logins to the local system from specific users.

Optionally set up the login authorization for a subset of users from a large repository such as an LDAP directory server.

The pam_authz service module provides functionality that allows the administrator to control who can login to the system. Starting with LDAP-UX Client Services B.04.00, pam_authz has been enhanced to allow system administrators to configure their local access rules in a local policy file, /etc/opt/ldapux/pam_authz.policy. pam_authz uses these access control rules defined in the

/etc/opt/ldapux/pam_authz.policy file to control the login authorization.

34

Chapter 2

Page 39 Page 41
Image 40
Page 39 Page 41
Contents Editon Manufacturing Part Number J4269-90054 E0606Legal Notices Contents Glossary Index Intended Audience Publishing HistoryWhat’s in This document Command and Tool Reference Use this chapter toHP Encourages Your Comments Overview of NIS+ to Ldap Migration Overview Documentation References Ldap Directory Server and LDAP-UX Client Services Overview of the LDAP-UX Integration ProductComparing Features and Security Between LDAP-UX and NIS+ Feature Comparison Between Ldap and NIS+Features Comparison between Ldap and NIS+ Security Comparison Between LDAP-UX and NIS+Security Coexisting with Trusted Mode Security Comparison between LDAP-UX and NIS+ NIS+ withTrusted Mode Sharing Comparing Ldap and NIS+ InformationSimplified NIS+ Environment How LDAP-UX Client Services Work Simplified LDAP-UX Client Services EnvironmentComparing Ldap and NIS+ Information Sharing Ldap Administrator ‘s Tools Description LDAP-UX Client Administrator’s Tools Migration ScriptsNIS+ to Ldap Migration Tools Description NIS+ to Ldap Migration Tools Tool DescriptionOverview of NIS+ to Ldap Migration Migrating NIS+ to Ldap Before You BeginBefore You Begin Summary of Migration Steps Migrating NIS+ Service Data to the Ldap ServerStep Migrating NIS+ Clients to LDAP-UX Client Services Installing Netscape Directory Server Installing and Configuring Your Ldap Directory ServerConfiguring Netscape Directory Server Installing the LDAP-UX Integration Product ONC EP/NCF Software Requirement Installing ONC EP/NCF Software and AutoFS 2.3 PatchSeptember AutoFS Patch Requirement Chapter Publickey and Automount Schemas Publickey SchemaAutomount Schema Following shows the new automount schema in the Ldif formatImporting Your NIS+ Data to Your Ldap Directory Server Steps to Import Your NIS+ Data into Your Directory Server and placed into a Ldif formatted file Importing Your NIS+ Data to Your Ldap Directory Server Migrateallnisplusonline.sh Enter the manager DN Configuring LDAP-UX Client Services Automount files ldap Configure the LDAP-UX Client Services, see the Configure Configuring LDAP-UX Client Services Verify LDAP-UX Client Services Ll /tmp Ls -l Verify LDAP-UX Client Services Chapter Ldappasswd Command SyntaxLdap Directory Tools ExamplesLdapentry Ldapscope SyntaxExamples NIS+ to Ldap Migration Scripts Ldapsearch Ldapmodify LdapdeleteMigrates groups Migrates all user Environment Variables General Syntax For Migration ScriptsNaming Context Default Naming ContextNIS+ Map Name Location in the Directory Tree Migrating The Credential Table NisMapName=mapname Non-standard mapaMigrating Most of Service Data Using One Script Migrating Individual Service Data Migrating User-Defined Maps NIS+ to Ldap Migration Scripts NIS+ to Ldap Migration Scripts Following shows the nispautomap.ldif file NIS+ to Ldap Migration Scripts Chapter Glossary Ldap Data Interchange Format LdifNetwork Information Service Plus NIS+ Glossary Symbols Index
Related manuals
Manual 214 pages 54.35 Kb Manual 26 pages 60.39 Kb
Top Page Image Contents