Manualshelf

LDAP-UX Client Services B.04.10 Administrator's Guide (edition 7)

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software
11121314151617181920
Preface: About This Document
The latest version of this document can be found on line at:
http://www.docs.hp.com
This document describes how to install and configure LDAP-UX Client Services product on
HP-UX platforms.
The document printing date and part number indicate the document's current edition. The
printing date will change when a new edition is printed. Minor changes may be made at reprint
without changing the printing date. The document part number will change when extensive
changes are made.
Document updates may be issued between editions to correct errors or document product changes.
To ensure that you receive the updated or new editions, you should subscribe to the appropriate
product support service. See your HP sales representative for details.
Intended Audience
This document is intended for system and network administrators responsible for installing,
configuring, and managing the LDAP-UX Client Services. Administrators are expected to have
knowledge of the LDAP-UX Client Services Integration product.
New and Changed Documentation in This Edition
This edition documents the following new information for the LDAP-UX Client Services version
B.04.10:
Support dynamic groups. This feature provides a reference to a dynamically managed group
based on the users status in an organization. A user can be added to or removed from a
group dynamically based on his/her most current status.
Enhance PAM_Authz to provide LDAP account and password security policy enforcement
without requiring LDAP-based authentication. This feature supports applications which
have already performed authentication, such as secure shell (SSH) or the r-commands.
Enhance PAM_Authz to provide meaningful error messages. For example, if the pam_authz
policy rule indicates that an account has been locked out or a password has expired,
pam_authz can return an appropriate PAM error code instead of a general deny error code.
Support an extension operation of TLS (Transport Layer Security) protocol called startTLS
to secure communication between LDAP clients and the Netscape/Red Hat Directory Server.
Publishing History
Table 1 Publishing History Details
Publication DateSupported Product
Versions
Operating Systems
Supported
Document Manufacturing Part
Number
September 2002B.03.0011.0, 11iJ4269-90016
October 2003B.03.2011.0, 11i v1 and v2J4269-90030
July 2004B.03.3011.0, 11i v1J4269-90038
September 2004B.03.3011.0, 11i v1 and v2J4269-90040
July 2005B.04.0011i v1 and v2J4269-90048
August 2005B.04.0011i v1 and v2J4269–90051
June 2006B.04.0011i v1 and v2J4269-90053
Intended Audience 13