Manualshelf

LDAP-UX Client Services B.04.15 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software
41424344454647484950
2.9 Configure LDAP-UX Client Services with Publickey Support
LDAP-UX Client Services B.04.00 or later version supports discovery and management of
publickeys in an LDAP directory. Both public and secret keys, used by the Secure RPC API can
be stored in user and host entries in an LDAP directory server, using thenisKeyObject
objectclass. Support for discovery of keys in an LDAP directory server is provided through the
getpublickey() and getsecretkey() APIs. You can use chkey and newkey commands
to manage user and host keys in an LDAP server. The chkey -s ldap command is used to
change user's secure RPC public key and secret key in an LDAP directory. The newkey -u
<username> -s ldap command is used to add new keys for users to an LDAP directory while
the newkey -h <hostname> -s ldap command is used to create new keys for machines to
an LDAP directory.
For detailed information on the newkey andchkey commands, refer to newkey(1M),chkey(1),
getpublickey(3N), getsecretkey() and publickey(4) man pages.
2.9.1 HP-UX Enhanced Publickey-LDAP Software Requirement
Support for publickey through LDAP requires functionality enhancement in LDAP-UX Client
Services and an enhancement in the ONC product. ONC with publickey LDAP support is available
through the HP-UX Enhanced Publickey-LDAP Software Pack (SPK) web release.
To enable the publickey LDAP support, you must install the Enhanced Publickey-LDAP software
bundle shown on Table 2-2 and LDAP-UX Client Services B.04.00 or later on your client systems.
The software bundle contains all the required patches plus the enablement product for this new
feature. For detailed information, refer to the ONC with Publickey LDAP Support Software Pack
Release Notes at the following web site:
http://docs.hp.com/en/netcom.html
Navigate to NFS Services.
Table 2-2 Enhanced Publickey-LDAP Software Requirement
Planned Release DateSoftware Bundle VersionOperating System Supported
June, 2006
Enhkey B.11.11.01HP-UX 11i v1
October, 2006
Enhkey B.11.23.01HP-UX 11i v2
You can download the Enhanced Publickey-LDAP software bundle from the following Software
Depot web site:
Go to http://www.hp.com/go/softwaredepot.
Click on the Enhancement releases and patch bundles link.
Select one of the following links:
HP-UX Software Pack (Optional HP-UX 11i v1 Core Enhancements) for
HP-UX 11i v1
HP-UX Software Pack (Optional HP-UX 11i v2 Core Enhancements) for
HP-UX 11i v2
Select one of the following links:
HP-UX Public Key LDAP link for HP-UX 11i v1
PublicKey-LDAP link for HP-UX 11i v2
Select and download one of the following software bundle, place it to your client system,
/tmp is assumed:
Enhkey B.11.11.01 HP-UX B.11.11 64+32 depot for HP-UX 11i v1
Enhkey B.11.23.01 HP-UX B.11.23 IA+PA depot for HP-UX 11i v2
46 Installing And Configuring LDAP-UX Client Services