Manualshelf

LDAP-UX Client Services B.04.10 with Microsoft Windows Active Directory Server Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software
12345678910
Table of Contents
Preface..............................................................................................................................15
About This Document...........................................................................................................................15
Intended Audience..........................................................................................................................15
New and Changed Documentation in This Edition........................................................................15
Publishing History...........................................................................................................................15
What's in This Document................................................................................................................16
Typographical Conventions............................................................................................................16
Related Documents..........................................................................................................................17
HP Encourages Your Comments.....................................................................................................17
1 Introduction...................................................................................................................19
Overview of LDAP-UX Client Services................................................................................................19
How LDAP-UX Client Services Works.................................................................................................20
2 Installing LDAP-UX Client Services..............................................................................23
Before You Begin...................................................................................................................................23
Summary of Installing and Configuring LDAP-UX Client Services....................................................23
Planning Your Installation....................................................................................................................24
Installing LDAP-UX Client Services on a Client..................................................................................30
Configuring Active Directory for HP-UX Integration..........................................................................30
Step 1: Install Active Directory........................................................................................................30
Step 2: Install SFU 2.0, 3.0 or 3.5 including Server for NIS..............................................................31
Step 3: Create a Proxy User.............................................................................................................31
Step 4: Add an HP-UX Client Machine Account to Active Directory.............................................34
Step 5: Use ktpass to Create the Keytab File for the HP-UX client machine...................................34
Step 6: Add POSIX Attributes into the Global Catalog...................................................................34
Importing Name Service Data into Your Directory..............................................................................35
Configuring LDAP-UX Client Services................................................................................................36
Step 1: Run the Setup Program........................................................................................................36
Remapping Attributes for Services............................................................................................42
Step 2: Install the PAM Kerberos Product.......................................................................................44
Step 3: Configure Your HP-UX Machine to Authenticate Using PAM Kerberos............................45
Step 4: Configure the Name Service Switch (NSS)..........................................................................46
Step 5: Configure the PAM Authorization Service Module (pam_authz)......................................46
Step 6: Configure the Disable Login Flag........................................................................................46
Step 7: Verify LDAP-UX Client Services for Single Domain...........................................................46
Step 8: Configure Subsequent Client Systems.................................................................................48
Configuring the LDAP-UX Client Services with SSL or TLS Support.................................................49
TLS Support.....................................................................................................................................49
Configuration Parameters...............................................................................................................50
Configuring the LDAP-UX Client to Use SSL or TLS.....................................................................50
Steps to Download the CA Certificate from Windows 2000 CA Server....................................50
Steps to Download the CA Certificate From Windows 2003 CA Server...................................51
Steps to create database files using the certutil utility...............................................................52
Adjusting the Peer Certificate Policy.........................................................................................53
Modifying preferredSererList in the LDAP-UX Profile .......................................................54
Downloading the Profile Periodically..................................................................................................55
Table of Contents 3