LDAP-UX Client Services B.04.15 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software

of these attributes to alternate attributes. Do you want to remap

any of the standard RFC 2307 attributes?

Enter “yes” if you want to remap attributes for any of the supported services. Then go to

the “Remapping Attributes for Services” (page 38) section for details of the procedures.

Otherwise, if you do not want to remap attributes for any of the supported services, then

enter “no” to this prompt to continue to step 13 of the setup process.

12. In this step, the setup program initiates a dialog where you can create a custom search

descriptor. A custom search descriptor allows you to specify a different search location or

filter for retrieving entries for services supported by LDAP-UX Client. Each name service

can have up to three different search descriptors. A custom search descriptor consists of

three parts: a search base DN, scope, and filter. The client uses the search descriptors in

order until it finds what it is looking for.

NOTE: If your search filters overlap, enumeration requests will result in duplicate entries

being returned. For example, if one search filter searched a subset of your organization and

a second search filter searched your entire organization, an enumeration request would

return duplicate entries.

See the “Minimizing Enumeration Requests” section for more information.

To begin the process to create custom search descriptors, setup will prompt you for the

following information:

LDAP-UX Client

Services supports the following services:

1.Password

7.Networks 2.Shadow passwd

8.Hosts 3.Group 9.Services

4.PAM (Pluggable Authentication Module)10.Printers 5.RPC

11.Automount 6.Protocols

12.Netgroup

You can create

up to three custom search descriptors for each name service to search

different locations in the directory for user and group information.

Do you want to create custom search descriptors? [No]:

Enter 'yes' if you want to create custom search descriptors for any of the supported services.

Then enter the number of the service for which you want to create a custom search descriptor.

If, you do not want to create custom search descriptors, enter 'no' to this prompt to continue

to step 13 of the setup process.

Creating the nisObject Search Filter

LDAP-UX Client Services uses the automount search filter for the automount service as

default. If you want to create the nisObject search filter for the automount service to

search a different location in the directory, use the following steps:

1. Type yes for the following question and press the return key:

Do you want to create custom search descriptors? [No]: yes

2. Next, it will take you to the screen which shows you the following information:

To accept the

default shown in brackets, press the Return key. search base [dc=cup,dc=hp,dc=com]:

search scope (base, one, sub) [sub] Search filter [(objectclass=automount)]

If you want to create the nisObject search filter for the automount service, then type

(objectclass=nisObject) for the following prompt and press the Return key;

otherwise press the return key to accept the default search filter,

objectclass=automount:

Search filter [(objectclass=automount)]: (objectclass=nisObject)

2.7 Configure the LDAP-UX Client Services 37