LDAP-UX Client Services B.05.00 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software

171

172

173

174

175

176

177

178

179

180

gecos

description

5.5.8.8 Displaying attribute mapping for a specific name service

Use the ldapcfinfo -t <type> -m command to display attribute mapping information

defined in the LDAP-UX configuration profile. The valid <type> value can be passwd or group.

The following command displays the attribute mapping for the gecos attribute which has been

mapped to cn, l and telephone attributes:

./ldapcfinfo -t passwd -m gecos

The output of the above command is as follows:

gecos=cn l telephoneNumber

The following command displays the attribute mapping for the gecos and uidNumber attributes.

In this example, gecos has been mapped to cn, l and telephone attributes, and uidNumber

has been mapped to the employeeNumber attribute:

./ldapcfinfo -t passwd -m gecos,uidNumber

The output of the above command is:

gecos=cn l telephoneNumber

uidNumber=employeeNumber

5.6 Managing hosts in an LDAP-UX domain

LDAP-UX B.05.00 introduces utilities that simplify management of hosts, adding to the toolset

provided for managing users and groups. Two utilities have been added, /opt/ldapux/bin/

ldaphostmgr and /opt/ldapux/bin/ldaphostlist. These utilities let you discover, create,

modify, and remove host objects in the directory server. Similar to the user and group management

tools described in Section 5.5 (page 159), these host-management tools integrate with the LDAP-UX

configuration, allowing administrators and automated scripts to modify host information without

needing to know configuration information such as the directory server host name, directory

server tree location, authentication methods, attribute mapping, search filters, and so forth.

As part of the guided installation (see Section 2.3 (page 23)), LDAP-UX uses the ldaphostmgr

tool to provision information about the current host into the directory server, including the host’s

ssh public key data. (For more information about using LDAP-UX to manage ssh host keys and

to pre-establish trust between hosts, see Chapter 6 (page 193).)

This section describes how to use the LDAP host management tools, ldaphostmgr and

ldaphostlist, by following example usage scenarios. Additional usage scenarios are described

in “Managing ssh host keys with LDAP-UX” (page 193).

NOTE: The examples in this section are targeted toward entries stored in an HP-UX Directory

server. Windows ADS users should translate the examples to the respective usage in ADS. For

example, instead of using an administrator DN of

uid=domadmin,ou=people,dc=mydomain,dc=eample,dc=com, you might see

cn=administrator,cn=users,dc=mydomain,dc=eample,dc=com in a Windows domain.

5.6.1 Adding a host

Use the ldaphostmgr tool to add, modify, and delete hosts to, in, and from the directory server.

ldaphostmgr relies on the LDAP-UX configuration profile to determine the proper location to

store new hosts. (For information about displaying the configuration profile, see Section 5.10

(page 182); for information about configuration profile object classes and attributes, see “LDAP-UX

Client Services object classes” (page 349).) The location where hosts are stored is defined in the

profile’s serviceSearchDescriptor for the hosts service. If you used the guided installation

(autosetup), this location is automatically defined to be ou=hosts,suffix or

cn=computers,suffix (for a Windows domain), where suffix is the base of your directory

174 Administering LDAP-UX Client Services