LDAP-UX Client Services B.04.00 with Microsoft Windows 2000/2003 Active Directory Administrator's Guide
Installing LDAP-UX Client Services
Configuring LDAP-UX Client Services
Chapter 2 49
If any owner or group shows up as a number instead of a user or
group name, the name service switch is not functioning properly.
Check the file /etc/nsswitch.conf, your directory, and your profile.
8. If you have configured a multi-domain setup and you want to verify
it, execute the following two steps. Otherwise, continue below with
“Step 8: Configure Subsequent Client Systems” on page 49.
The following steps will verify that LDAP-UX is able to retrieve data
from ADS multiple domains:
a. Create or import a POSIX user account into an ADS remote
domain (for example, the user account smith, this is identical to
how you set it up for a single domain, except now you put it into a
remote domain).
b. If pwget -n smith returns valid data, LDAP-UX is working with
ADS multiple domains. If no data was returned, the setup was
not successful.
Step 8: Configure Subsequent Client Systems
Once you have configured your directory and one client system, you can
configure subsequent client systems using the following steps. Modify
any of these files as needed.
1. Use swinstall to install LDAP-UX Client Services on the client
system. This requires rebooting the client system.
2. Copy the following files from a configured client to the client being
configured:
• /etc/opt/ldapux/ldapux_client.conf
• /etc/opt/ldapux/pcred only if you have configured a proxy
user, not if you are using only anonymous access
• /etc/pam.conf
• /etc/nsswitch.conf
• cert7.db or cert8.bd and key3.db flles if SSL is enabled
3. Download the profile by running get_profile_entry as follows:
cd /opt/ldapux/config
./get_profile_entry -s nss -D bindDN -w password