LDAP-UX Client Services B.05.00 Administrator's Guide

Glossary
Access Control
Instruction
A specification controlling access to entries in a directory.
Access Control
List
One or more ACIs.
ACI See See Access Control Instruction.
Configuration
profile
An entry in an LDAP directory containing information common to many clients, that allows
clients to access user, group and other information in the directory. Clients download the profile
from the directory.
See also See also Client Configuration File..
DIGEST-MD5 Message Digest version 5. It is a one-way hash function and always generates 20 bytes of output
from text data.
domain See LDAP-UX domain.
IETF Internet Engineering Task Force; the organization that defines the LDAP specification. See the
IETF website at http://www.ietf.org.
LDAP See See Lightweight Directory Access Protocol.
LDAP Data
Interchange
Format (LDIF)
The format used to represent directory server entries in text form.
LDAP-UX domain A collection of users, groups and hosts that are managed in the LDAP directory server and are
defined by the LDAP-UX configuration profile. All hosts configured to point to the same
LDAP-UX configuration profile are considered part of that domain. Not to be confused with
Windows domains, the directory server administration domain, or a DNS domain.
LDIF See See LDAP Data Interchange Format.
Lightweight
Directory Access
Protocol (LDAP)
A standard, extensible set of conventions specifying communication between clients and servers
across TCP/IP network connections.
See also See also SLAPD..
Name Service
Switch (NSS)
A framework that allows a host to get name information from various sources such as local
files in /etc, NIS, NIS+, or an LDAP directory without modifying applications. For more
information, see the switch(4) manpage.
Network
Information
Service (NIS)
A distributed database system providing centralized management of common configuration
files, such as /etc/passwd and /etc/hosts.
NIS See See Network Information Service.
NSS See See Name Service Switch.
PAM See See Pluggable Authentication Mechanism.
PAM
Authorization
Service Module
See The PAM Authorization Service Module allows the administrator to control which user
subgroups of a large repository can login to the system pam_authz5 manpage.
Pluggable
Authentication
Module (PAM)
A framework that allows different authentication service modules to be made available without
modifying applications. For more information, see the See pam_ldap(5), pam(3), and pam.conf(4)
manpages.
Profile See See Configuration profile.
RFC Request for Comments; a document and process of standardization from the IETF.
RFC 2307 The IETF specification for using LDAP as a Network Information Service. See the RFC at the
following location:
http://www.ietf.org/rfc/rfc2307.txt.
SLAPD The University of Michigan's stand-alone implementation of LDAP, without the need for an
X.500 directory.
367