LDAP-UX Client Services B.04.15 Administrator's Guide
5.7 Displaying the Proxy User's DN
You can display the proxy user's distinguished name by running
/opt/ldapux/config/ldap_proxy_config -p.
The following command displays the current proxy user:
ldap_proxy_config
-p PROXY DN: uid=proxy,ou=people,o=hp.com
5.8 Verifying the Proxy User
The proxy user information is stored encrypted in the file /etc/opt/ldapux/pcred. You can check
if the proxy user can authenticate to the directory by running
/opt/ldapux/config/ldap_proxy_config -v as follows:
cd /opt/ldapux/config ./ldap_proxy_config -v File Credentials
verified - valid
5.9 Creating a New Proxy User
If you need to create a new proxy user and change your client systems to use the new proxy user,
use the following steps:
1. Add the new proxy user to your directory with appropriate access controls. See the steps
"Create a proxy user" and "Set access permissions for the proxy user" under the procedure
Configure Your Directory (page 27) for details.
2. Configure each client to use the new proxy user by running
/opt/ldapux/config/ldap_proxy_config. See The ldap_proxy_config Tool (page 142) for details.
See below for examples.
3. Run /opt/ldapux/config/ldap_proxy_config -p to display the proxy user you just configured
and confirm that it is correct.
4. Run /opt/ldapux/config/ldap_proxy_config -v to verify the proxy user is working.
5.9.1 Example
For example, the following command configures the local client to use a proxy user DN of
uid=proxy,ou=people,o=hp.com with a password of abcd1234:
cd /opt/ldapux/config
./ldap_proxy_config -i uid=proxy,ou=people,o=hp.com abcd1234
The following command displays the current proxy user:
./ldap_proxy_config
-p PROXY DN: uid=proxy,ou=people,o=hp.com
The following command checks to see if the proxy user can bind to the directory:
./ldap_proxy_config -v File Credentials
verified - valid
5.10 Displaying the Current Profile
You can display the profile in use by any client by running
/opt/ldapux/config/display_profile_cache on that client. The current profile is in the binary file
/etc/opt/ldapux/ldapux_profile.bin.
cd /opt/ldapux/config
./display_profile_cache
You can also find out from where in the directory the client downloaded the profile by displaying
the file /etc/opt/ldapux/ldapux_client.conf and looking for the line beginning with
PROFILE_ENTRY_DN, for example:
grep ^PROFILE_ENTRY_DN
/etc/opt/ldapux/ldapux_client.conf PROFILE_ENTRY_DN="cn=profile1,ou=hpuxprofiles,o=hp.com"
126 Administering LDAP-UX Client Services