LDAP-UX Client Services B.04.15 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software

171

172

173

174

175

176

177

178

179

180

home directory does not exist or the user running ldapugmod

does not have sufficient permissions to move the directory,

ldapugmod returns an error.

-I <gecos> Replaces gecos fields for the user. If <gecos> is an empty string,

ldapugmod removes the gecos or mapped attribute(s).

Typically the gecos argument contains four fields which represent

in the following order:

• The user’s full name

• The user’s work location

• The user’s work telephone number

• The user’s home telephone number (often omitted)

Each field in the <gecos> argument must be separated by a

comma. Although the fields specified within the <gecos>

argument can contain white space (such as “Bill Smith,Building

6,555-1234”). White space cannot be used between each field and

the separating commas.

LDAP-UX supports attribute mapping of the gecos field to

multiple attributes. If attribute mapping has been specified in the

LDAP-UX configuration profile, each field is mapped to its

representative attribute, in the order specified.

WARNING! If you specify the -I option and you have defined

attribute mapping for the gecos attribute, be careful not to specify

the same attributes in the command line that are also used in the

gecos map. In the following example, the gecos attribute has

been mapped to cn, l, and telephoneNumber attributes. The

following command can produce unpredictable results:

ldapugmod -I “lisa Hu,Austine,222-1234”

lhu "cn=lisa Hu” “sn=Hu”\ “telePhoneNumber=222-1234”

In the above example, because of the gecos attribute mapping,

the cn and telephoneNumber are specified twice, it results an

error when the same attribute and value are added to the directory

server. Use the ldapcfinfo tool to check gecos attribute

mapping configuration.

If the <gecos> argument is an empty string, ldapugmod removes

the gecos or mapped attributes. HP does not recommend that

you use the -I option, because the gecos attribute is often

mapped to required attributes. See the “WARNING” section below

for impacts when using this option.

-c <comment> Replaces a comment that will be stored in the description

attribute as defined by RFC 2307. LDAP-UX does not support

attribute mappings for the description attribute.

Enables modification of arbitrary LDAP attributes and values. The

<value> parameter may be an empty string. However this usage

does not remove attributes and their values from the directory

server. Instead use the -R option to remove arbitrary attributes.

See the “WARNING” section below for impacts when using this

option

6.3 LDAP User and Group Management Tools 179