LDAP-UX Client Services B.04.00 with Microsoft Windows 2000/2003 Active Directory Administrator's Guide
Installing LDAP-UX Client Services
Configuring Active Directory for HP-UX Integration
Chapter 2 29
10. Repeat above steps to delegate user posix attributes to the
proxy user by choosing "User objects" in 7), and choose the
following posix user attributes in 8):
For SFU, version 2.0:
— Read gecos
— Read loginShell
— Read msSFUHomeDirectory
— Read gidNumber
— Read uidNumber
— Read msSFUName
For SFU, version 3.0 or 3.5:
— Read msSFU30Gecos
— Read msSFU30LoginShell
— Read msSFU30HomeDirectory
— Read msSFUGidNumber
— Read msSFU30UidNumber
— Read msSFU30Name
• If you will be using ADS multiple domains:
If you configure LDAP-UX with ADS multiple domains, you configure
a proxy user as described above in one of any domains, then
configure the same proxy user in every domain which you want to
include in your remote domain support with LDAP-UX. For example,
first configure a proxy user proxyusr for the domain ldap.hp.com.
Next, include the domain eng.hp.com in the support, and add
proxyusr@ldap.hp.com to the domain eng.hp.com using above
steps. Repeat these steps for every domain you want to include. If
you have multiple LDAP-UX clients, you can also configure one proxy
user for each client as long as the proxy user has the access right to
all domains that the client wants to access.
The proxy user needs to have access right to read passwd and group
information in multiple domains.