LDAP-UX Client Services B.05.00 Administrator's Guide
attribute mapping to specifically match the schema model defined in the existing directory
server.
• You want to install the HP-UX host into multiple-domain Windows environment. Guided
installation only supports installation into a single windows domain.
• You cannot modify the directory server’s schema. In this case, you can deploy using a
local-only profile. The local-only profile can also be useful for small deployments and testing
purposes. For more information, see Section 2.4.5.1 (page 69).
• You require integration with HP-UX Trusted Mode. The autosetup script will not properly
configure LDAP-UX on host using Trusted Mode.
2.3 Guided installation (autosetup)
The guided installation greatly simplifies installation of LDAP-UX, and it gives you the option
of creating an HP-UX Directory Server instance. Setting up an HP-UX client with LDAP-based
security can be accomplished in a matter of moments. The information required for installation
is kept to an absolute minimum. For example, the only information required when installing
and configuring LDAP-UX into an existing directory server environment is the name of the
directory server or the name of the LDAP-UX or Windows domain being joined, as well as the
credentials of a user who is permitted to either create a new domain or join an existing one. (The
LDAP-UX domain is created by LDAP-UX 5.0 or later installations; it is the collection of users,
groups and hosts that can be managed in the LDAP directory server, as defined by the LDAP-UX
configuration profile. For more information, see Section 2.3.2 (page 27).) When creating a new
directory server, the guided installation can automatically discover the name of the local host
and generate the name of the new directory server instance based on the DNS domain. While
the guided installation (autosetup) is intended to be an interactive utility, you can use
command-line options to specify input required by the utility and, in some scenarios, make it
completely automated. The command-line options are described in detail in Section 2.3.5 (page 38).
While one of the strengths of LDAP-UX is its ability to integrate into any environment using a
variety of configuration options, the guided installation configures LDAP-UX with the most
commonly-used installation settings that support a trusted management framework. To assure
that the associated directory server is trusted in the security management space for HP-UX, the
guided installation requires that the directory server be enabled for SSL support. The guided
installation can automatically provision a new HP-UX Directory Server instance with SSL enabled,
if one is needed.
The guided installation supports three basic installation scenarios:
• Installing LDAP-UX to create a new directory server (New Directory Server Installation
mode): In this scenario, the guided installation creates and provisions a new SSL-enabled
instance of an HP-UX Directory Server on the local host, and then configures LDAP-UX to
connect to that directory server. (It sets up the PAM configuration file /etc/pam.conf and
the NSS configuration file /etc/nsswitch.conf; samples of these files are included in
“Samples of LDAP-UX configuration files created or modified by autosetup” (page 359).)
The guided installation prompts for a directory server administration domain name, or if
one already exists, the host name and port number of the directory server that manages the
existing server administration domain (this directory server is also referred to as the
Configuration Directory Server or configuration directory).
NOTE: The directory server administration domain is the domain used for managing the
directory servers themselves. In contrast, the LDAP-UX domain is the domain used for
managing the data stored by the directory server. It consists of the collection of users, groups
and hosts that can be managed in the LDAP directory server. For more information for the
variety of domains discussed in this manual, see Section 2.3.3 (page 36).
The guided installation also prompts for the initial credentials used for managing the elements
of the directory server and the data managed by that directory server. It configures the
2.3 Guided installation (autosetup) 23