LDAP-UX Client Services B.04.00 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software

201

202

203

204

205

206

207

208

209

210

LDAP-UX Client Services Object Classes

Proﬁle Attributes

Appendix B188

searchTimeLimit,

serviceAuthenticationMethod,

serviceCredentialLevel,

servicesearchDescriptor

Proﬁle Attributes

The attributes of DUAConﬁgProﬁle is deﬁned as follows:

cn is the common name of the proﬁle entry.

attributeMap is a mapping from RFC 2307 attributes to alternate

attributes. Use this if your entries do not conform to

RFC 2307. Each entry consists of:

Service

Attribute

Altattribute

where

Service

one of the supported services: passwd, group, shadow,

pam, networks, hosts, protocols, services, rpc, or

netgroup.

Attribute

is an attribute of the service as

deﬁned by RFC 2307.

Altattribute

is the attribute

that should be used instead of the standard attribute.

For example, pam:userPassword=ntUserPassword

maps the userPassword attribute to ntUserPassword

for the pam service.

passwd:uidnumber=employeeNumber maps the

uidnumber attribute to employeeNumber for the

passwd service.

NOTE The userPassword attribute is mapped to *NULL* to

prevent passwords from being returned for increased

security and to prevent PAM_UNIX from

authenticating users in the LDAP directory. Mapping

to *NULL* or any other nonexistent attribute means

do not return anything.