LDAP-UX Client Services B.04.00 with Microsoft Windows 2000/2003 Active Directory Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software

Glossary 193

Glossary

Access Control Instruction A

speciﬁcation controlling access to entries in a

directory.

Access Control List One or more ACIs.

ACI See See Access Control Instruction

ACL See See Access Control List.

IETF Internet Engineering Task Force; the

organization that deﬁnes the LDAP

speciﬁcation. See http://www.ietf.org.

Conﬁguration proﬁle An entry in an

LDAP directory containing information

common to many clients, that allows clients

to access user, group and other information

in the directory. Clients download the proﬁle

from the directory.See also See also Client

Conﬁguration File.

Global Catalog Server (GCS) This refers

to the domain controller, which hosts the

global catalog for a forest. The global catalog

contains partial information of each domain.

LDAP-UX utilizes this feature to find out

which domain a queried data belongs to. The

root domain is the default GCS.

KDC Key Distribution Center. A computer

that issues the session key necessary for the

client and server to communicate in a

Kerberos environment.

Kerberos An authentication protocol

designed for open, hostile networks.

Developed by MIT.

LDAP See See Lightweight Directory Access

Protocol

LDIF See See LDAP Data Interchange

Format

LDAP Data Interchange Format (LDIF)

The format used to represent directory

server entries in text form.

Local Domain This refers to the domain

that you first configure using the LDAP-UX

setup tool and after choosing Windows 2000

or 2003 ADS as your directory server. This is

also the only domain you configure if you

just choose a single domain in which to store

your POSIX information. When LDAP-UX

retrieves POSIX information, the local

domain is always the first domain searched.

If the entry is found in the local domain,

searching stops, therefore, the local domain

will be the primary domain in which you

store frequently accessed information. Its

profile configuration is

/etc/opt/ldapux/ldapux_proﬁle.bin

Lightweight Directory Access Protocol

(LDAP) A standard, extensible set of

conventions specifying communication

between clients and servers across TCP/IP

network connections.See also See also

SLAPD.

Multiple Domains The supported multiple

domains refer to domains in an ADS forest.

Domains from different forests are not

supported.

Name Service Switch (NSS) A

framework that allows a host to get name

information from various sources such as

local ﬁles in /etc, NIS, NIS+, or an LDAP

directory without modifying applications.

See switch(4) for more information.

Network Information Service (NIS) A

distributed database system providing

centralized management of common

conﬁguration ﬁles, such as /etc/passwd and

/etc/hosts.