HP CIFS Server Administrator Guide Version A.03.01.03 (5900-2006, October 2011)
Table Of Contents
- HP CIFS Server Administrator Guide Version A.03.01.03
- Contents
- About this document
- 1 Introduction to the HP CIFS Server
- 2 Installing and configuring HP CIFS Server
- HP CIFS Server requirements and limitations
- Step 1: Installing HP CIFS Server software
- Step 2: Running the configuration script
- Step 3: Modify the configuration
- Step 4: Starting HP CIFS Server
- Other Samba configuration issues
- 3 Managing HP-UX file access permissions from Windows NT/XP/2000/Vista/Windows 7
- Introduction
- UNIX file permissions and POSIX ACLs
- Using the Windows NT Explorer GUI to create ACLs
- Using the Windows Vista Explorer GUI to create ACLs
- POSIX ACLs and Windows 2000, Windows XP, Windows Vista, and Windows 7 clients
- HP CIFS Server Directory ACLs and Windows 2000, Windows XP, Windows Vista, and Windows 7 clients
- In conclusion
- 4 Windows style domains
- Introduction
- Configure HP CIFS Server as a PDC
- Configure HP CIFS Server as a BDC
- Domain member server
- Create the Machine Trust Accounts
- Configure domain users
- Join a Windows client to a Samba domain
- Roaming profiles
- Configuring user logon scripts
- Home drive mapping support
- Trust relationships
- 5 Windows 2003 and Windows 2008 domains
- 6 LDAP integration support
- Overview
- Network environments
- Summary of installing and configuring
- Installing and configuring your Directory Server
- Installing LDAP-UX Client Services on an HP CIFS Server
- Configuring the LDAP-UX Client Services
- Enabling Secure Sockets Layer (SSL)
- Extending the Samba subschema into your Directory Server
- Migrating your data to the Directory Server
- Configuring the HP CIFS Server
- Creating Samba users in directory
- Management tools
- 7 Winbind support
- 8 Kerberos support
- 9 HP CIFS deployment models
- Introduction
- Samba Domain Model
- Windows Domain Model
- Unified Domain Model
- 10 Securing HP CIFS Server
- 11 Configuring HA HP CIFS
- 12 HP-UX configuration for HP CIFS
- 13 Tool reference
- Glossary
- Index
ldapmodify
You use the ldapmodify command-line utility to add, delete or modify POSIX user entries in an
existing LDAP directory. ldapmodify opens a connection to the specified server using the
distinguished name and password you supply, and adds or modifies the entries based on the LDIF
update statements contained in a specified file.
Syntax
ldapmodify [optional_options]
where
optional_options Specifies a series of command-line options.
ldapmodify options
The section lists the most commonly used ldapmodify options.
-a Allows you to add LDIF entries to the directory without requiring the changetype:add LDIF
update statement. This provides a simplified method of adding entries to the directory.
-B Specifies the suffix under which the new entries will be added.
-D Specifies the distinguished name (DN) with which to authenticate to the server. If specified,
this value must be a DN recognized by the Directory Server, and it must also have the authority
to search for the entries.
-f This option specifies the file containing the LDIF update statements used to define the directory
modification. If you do not supply this option, the update statements are read from stdin.
-h Specifies the hostname or IP address of the Directory Server. If not specified, ldapmodify
uses the local host.
-p Specifies the TCP port number that the Directory Server uses. The default is 389.
-q Causes each add operation to be performed silently as opposed to being echoed to the
screen individually.
-w Specifies the password associated with the distinguished name that is specified in the -D
option.
Examples
The following commands add the entries to the LDAP directory server:
$ /opt/ldapux/ldamodify -a -D "cn=Directory Manager, dc=hp,dc=com" -w dmpasswd -h ldaphostA \
-p 389 -f new.ldif
Where the entries specified in the new.ldif file will be added to the directory server.
As an example, the following LDIF update file, new.ldif, contains update statements to create
the user account, user1, to the LDAP directory server:
dn: uid=user1,ou=Pepole,dc=example,dc=hp,dc=com
objectclass: top
objectclass: account
objectclass: posixAccount
memberuid: user1
homedirectory: /home/user1
loginshell: /usr/bin/krh
gecos: User1 Hu, 40N-20
ldapsearch
You can use the ldapsearch command-line utility to locate and retrieve LDAP directory entries.
This utility opens a connection to the specified server using the specified distinguished name and
password, and locates entries based on the specified search filter. Search results are returned in
LDIF format.
LDAP directory management tools 169