LDAP-UX Client Services B.04.00 with Microsoft Windows 2000/2003 Active Directory Administrator's Guide
Installing LDAP-UX Client Services
Configuring LDAP-UX Client Services
Chapter 234
Configuring LDAP-UX Client Services
To configure the LDAP-UX Client Services, complete the steps in this
section.
If you attempt to enable SSL support with LDAP-UX, you must configure
the LDAP directory server to support SSL and install the security
database (cert7.db or cert8.db and key3.db) on your client before you run
the setup program. For SSL setup details, refer to“Configuring the
LDAP-UX Client Services with SSL Support” on page 51.
NOTE The LDAP-UX Client Services provides default attributes and search
descriptor settings to work with Microsoft Windows Services for UNIX
3.0/3.5 (SFU 3.0/3.5) when working with the Windows 2000 or 2003
Active Directory. If you use SFU 2.0, you can manually re-link the
attribute configuration file to SFU 2.0. Use this command to switch to
SFU 2.0:
ln -fs /etc/opt/ldapux/defautl_profile_attr_ads_sfu2.ldif\
/etc/opt/ldapux/defuatl_profile_attr_ads.ldif
LDAP-UX Client Services will also use SFU 2.0 in the absence of the
softlink /etc/opt/ldapux/defualt_profile_attr_ads.ldif.
You can also run the setup program to select and set the attribute map to
be used with your directory server.
Step 1: Run the Setup Program
This section describes in detail the steps you need to take to configure
LDAP-UX Client Services with Windows 2000 or 2003 Active Directory.
In summary, you will need to run the setup program to extend the profile
schema into Active Directory and to create specific profile entries. The
setup program also creates the necessary files on your client system and
configures the proxy user.
If you want to use SSL, you must have the certificate database files,
cert8.db or cert7.db and key3.db, on your client system before you run the
setup program.