Integrating HP-UX 11.x Account Management and Authentication with Microsoft Windows 2000
9
LDAP Integration:
Windows 2000 as LDAP server + HP-UX as LDAP Client + HP-UX PAM_Kerberos
HP-UX uses Windows 2000 AD to store user account and group information. The LDAP-UX client on HP-UX retrieves
information from AD. The PAM Kerberos product on HP-UX uses Windows 2000 Kerberos Services to authenticate users
who want to log into HP-UX machines. The following figure illustrates the integration between two platforms.
getpwnam
()
NSS engine
NSS_LDAP
Active
Directory
Server for NIS
(SFU 2.0)
Extend
schema
LDAP:
HP-UX Client Windows 2000 Server
LDAP
p
rotocol
LDAP + PAM_Kerberos:
login
PAM Library
PAM_Kerberos
Active
Directory
Server for NIS
(SFU 2.0)
getpwnam()
NSS engine
NSS_LDAP
Kerberos Services
HP-UX Client Windows 2000 Server
Kerberos protocol
LDAP protocol