LDAP-UX Client Services B.05.00 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software

171

172

173

174

175

176

177

178

179

180

ipHostNumber: 16.92.96.113

ipHostNumber: 192.168.10.10

To remove an IP address for a host, use the -i option with the ! flag in front of the IP address

to be removed. For example, to remove the address added in the previous example:

# ldaphostmgr -i !192.168.10.10 brewer

bind-dn [uid=domadmin,ou=People,dc=mydomain,dc=example,dc=com]:

Password:

# ldaphostlist -n brewer

dn: cn=brewer,ou=Hosts,dc=mydomain,dc=example,dc=com

cn: brewer

ipHostNumber: 16.92.96.113

To remove all IP addresses for a host, use the -i option with the ! flag by itself. However, after

removing all IP addresses, the special address 0.0.0.0 is added to assure that the ipHost

object class can remain as part of the host entry. The ipHost object class is the only standard

object class that is used to identify hosts and distinguish them from other types of devices.

Example:

# ldaphostmgr -i "!" brewer

bind-dn [uid=domadmin,ou=People,dc=mydomain,dc=example,dc=com]:

Password:

# ldaphostlist -n brewer

dn: cn=brewer,ou=Hosts,dc=mydomain,dc=example,dc=com

cn: brewer

ipHostNumber: 0.0.0.0

To remove all ipHostNumber attributes, use the -R option. This removes both the

ipHostNumber attribute and the ipHost object class. However, when this occurs,

ldaphostlist is no longer able to display the host, since the ipHost object class is the critical

object class used to distinguish hosts from other types of devices managed in the directory server.

You can use the -F option to override the default ldaphostlist search filter to find hosts or

other types of devices that do not use the ipHost object class. Example:

# ldaphostmgr -R iphostNumber -R objectclass=iphost brewer

bind-dn [uid=domadmin,ou=People,dc=mydomain,dc=example,dc=com]:

Password:

# ldaphostlist -n brewer

# ldaphostlist -F "(&(objectclass=device)(cn=brewer))"

dn: cn=brewer,ou=Hosts,dc=mydomain,dc=example,dc=com

cn: brewer

No host was found

5.6.5 Managing hosts in groups

There are several ways to group hosts. You can accomplish simple grouping by adding hosts as

members of the traditional X.500 group structures. Use the -G option to do this. The -G option

supports the ! flag to remove a host from a group, similar to the -i option. Note that in a POSIX

environment, the grouping of hosts is not a native construct. Users may be members of groups,

but hosts may not. In an LDAP-based directory server, any object in the directory server may be

a member of any X.500 style group. So, grouping of hosts using the -G option can add hosts only

as members of the X.500 style groups, identified with the groupOfNames or

groupOfUniqueNames object classes. While you can list members of these types of groups

using the /opt/ldapux/bin/ldapsearch utility, you can also extend the display capabilities

of the ldapuglist tool to list groups that are standard X.500 groups and contain hosts as

members. The following example shows how to add a host to a group (dbhosts) that already

has one member (baker):

# ldapuglist -t group -P -F "(cn=dbhosts)" uniqueMember

bind-dn [uid=domadmin,ou=People,dc=mydomain,dc=eample,dc=com]:

Password:

178 Administering LDAP-UX Client Services