LDAP-UX Client Services B.05.00 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software

261

262

263

264

265

266

267

268

269

270

Run the following command to delete the entire user account entry, astein, on the LDAP

directory server, ldapsrvA. The -h option overrides the server list defined by the LDAP-UX

configuration profile.

./ldapugdel -t passwd -h ldapsrvA:389 astein

Run the following command to delete the entire user account entry, msmart:

./ldapugdel -t passwd msmart

Run the following command to delete the entire group entry with the distinguished name,

“cn=group1,ou=groups,dc=example,dc=com":

./ldapugdel -t group -D "cn=group1,ou=groups,dc=example,dc=com"

Run the following command to delete only the posixAccount object class and associated attributes,

uidnumber, gidNumber, homeDirectory, loginShell and gecos, without delete the entire

user entry, msmith:

./ldapugdel -t passwd -O msmith

Run the following command to delete only the posixAccount object class and associated attributes,

uidnumber, gidNumber and gecos, without delete the entire user entry, mlee:

./ldapugdel -t passwd -O "homeDirectory,loginShell" mlee

Run the following command to delete only the posixGroup object class and associated attributes,

gidNumber, memberUid and userPassword, without delete the entire group entry, groupA:

./ldapugdel -t group -O groupA

The following command forces ldapugdel to remove the common uid, cn and description

attributes from the user entry, jswartz:

./ldapugdel -t passwd -O -x jswartz

Run the following commands to unset the LDAP_BINDDN and LDAP_BINDCRED environment

variables:

unset LDAP_BINDDN

unset LDAP_BINDCRED

7.3.8 ldaphostmgr tool

Use the ldaphostmgr tool to add, modify, or delete information about hosts (OS instances) that

are part of the organization. The ldaphostmgr tool:

• Uses the existing ldapux(5) configuration, requiring only a minimal number of command-line

options to discover where to search for host information, such as what directory server(s)

to contact and proper search filters for finding hosts.

• Uses the existing ldapux(5) authentication configuration to determine how to bind to the

LDAP directory server.

• Supports attribute-mapping for attributes defined by the ipHost objectclass. Additional

attributes used in a host entry (such as owner, entityRole, and so on) are not mapped.

• Can be used to centrally manage ssh public keys for hosts.

7.3.8.1 Synopsis

ldaphostmgr [-a | -m | -d]

[-F] [-I] [-X] [-Z] [-ZZ] [-ZZZ] [-P] [-C] [-f] [-S] [-V]

[-h servername] [-p port] [-B relbase] [-x domain]

[-O owner[...]] [[-G group] [...]]

-k [[!|?|^]keytype] [-e days_to_expire]]

[-i [ipAddr]] [...]] [[-r role][...]]

[[-A attrval] [...]] [[-R attrval] [...]]

[-c comment] [-E envfile] {(-D DN) | host_name}

[[attr=value][...]]

266 Command and tool reference