LDAP-UX Client Services B.04.00 with Microsoft Windows 2000/2003 Active Directory Administrator's Guide
Active Directory Multiple Domains
Retrieving Data from a Remote Domain
Chapter 362
Retrieving Data from a Remote Domain
LDAP-UX can retrieve data from a remote domain using three methods:
• Remote Domain Configuration
This method allows you to configure a sequence in which LDAP-UX
searched remote domains. If you know in which domains your data
resides, you can use setup to configure a remote domain sequence.
When LDAP-UX does not find data in the local domain, all remote
domains are searched in the specified order until the data is found.
• GCS
This method allows you to configure LDAP-UX to search the GCS
first. If you are not sure in which domains the data resides, you can
configure LDAP-UX to search the GCS first to determine in which
domain the requested data resides, then connect to that specific
domain controller to retrieve complete POSIX information. However,
by default, the global catalog does not contain any POSIX attributes.
You should add some POSIX attributes into the global catalog. For
information, refer to “Adding POSIX Attributes to the Global
Catalog” on page 70.
You also need a configuration profile that specifies which server (and
port) serves as the GCS. The GCS profile is stored locally in
/etc/opt/ldapux/domain_profiles/ldapux_profile.bin.gc.
• Both Remote Domain Configuration and GCS
If you are sure that you need some specific remote domains, but don’t
want to exclude other domains, you can configure both, specifying
remote domains and configuring usage of the GCS. When both are
configured, LDAP-UX searches in this sequence:
1. local domain
2. remote domains in the order of configuration
3. GCS to determine in which domain the data resides
4. specific domain determined by GCS