LDAP-UX Client Services B.05.00 Administrator's Guide
• For details on how to integrate LDAP-UX Client Services with the Windows Server 2003
R2/2008 Active Directory, see the LDAP-UX Client Services B.05.00 with Microsoft Windows
Active Directory Server Administrator's Guide at:
http://www.hp.com/go/hpux-security-docs
Click HP-UX LDAP-UX Integration Software.
• For illustrative purposes, the examples use a base DN of o=hp.com.
2.2 Choosing the method of installation: guided or customized
LDAP-UX Client Services releases prior to B.05.00 only provided one installation option, the
customized installation using the setup program, which is a traditional screen-based program
that requires that you run several procedures to set up and configure a new directory server
instance after installing the directory server product bundle. This option allows an experienced
administrator to customize the software. LDAP-UX Client Services B.05.00 introduces the guided
installation using the autosetup program, which greatly simplifies the installation and
configuration process. This is a simple, quick, and automated procedure that gets you started
with a basic implementation of the software, requiring little input other than identifying
administrator-level entities. These entities automatically perform privileged configuration tasks
for you. The guided installation allows you to install and configure a new instance of an LDAP
directory server automatically and configured for use with LDAP-UX. The autosetup script
creates and configures the new directory server instance with Secure Socket Layer (SSL)/Transport
Layer Security (TLS) services enabled. You can customize the software afterward.
Both the setup and autosetup programs are available in /opt/ldapux/config.
The guided installation (autosetup) is most advantageous if:
• You prefer simplicity, ease, and quickness of installation.
• You prefer an installation that enables immediate use of LDAP-UX, with minimal input
required; autosetup automatically provides default values for many parameters that must
be provided manually during a customized installation (you can customize parameters later,
if desirable).
• You are installing and configuring LDAP-UX for the first time in an environment that has
no LDAP directory server instance;autosetup detects whether a directory server instance
already exists, and if one is not found, the script can set up the directory server for you (if
you use the custom installation in an environment that lacks an LDAP directory server, you
are responsible for setting up the directory server yourself).
• You want HP-UX host management automatically enabled in the directory server (for more
information about host management, see Section 5.6 (page 174)).
• You want secure shell (ssh) host key management automatically enabled (ssh key
management is supported in non-Windows environments only); for more information about
managing ssh host keys, see “Managing ssh host keys with LDAP-UX” (page 193).
You can also use autosetup to install LDAP-UX Client Services into a single Windows domain
that has been configured with SSL support. For information about installing and configuring
LDAP-UX Client Services into a Windows domain, see the LDAP-UX Client Services B.05.00 with
Microsoft Windows Active Directory Server Administrator's Guide.
The customized installation (setup) is advantageous if:
• You are more experienced and familiar with the product, and you want to manually
customize the software during the installation.
• You are installing into an environment that already includes an LDAP directory server, and
user and group data has already been installed on that directory server. The guided
installation makes assumptions about the location of user, group, and host data that is stored
in the directory server (for more information, see “Principles of the LDAP-UX domain”
(page 27)). The customized installation allows you to define data location and customized
22 Installing and configuring LDAP-UX Client Services