LDAP-UX Client Services B.05.00 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software

An LDAP-UX domain administrator is used to manage all data within

the LDAP-UX domain. The domain administrator has fewer privileges than the

Directory Manager or Configuration Administrator. This account will be the

primary account used to manage data within the directory server, or its

privileges can later be distributed to other users. This account should

typically be associated with an individual and may be named as such. The

account name should be 8 characters or less, since this account can be used on

the HP-UX OS.

Enter Domain Administrator's account name [domadmin]: Return

9. Enter the password for the LDAP-UX Domain Administrator and then re-enter it to confirm:

Please enter the "domadmin" password: [password not displayed] Return

Please re-enter the "domadmin" password: [password not displayed] Return

The installation now begins, followed by other related tasks; autosetup displays the progress

and results, as in the following example.

NOTE: For future reference, be sure to record the information displayed. To record this

information, you can use Table 2-3 (page 48) . The table also describes the parameters that were

configured in the preceding example.

Creating new directory server instance in local host...

Creating directory server master instance "west-master". Please wait ...

Successfully created master instance with the following parameters:

Instance name: west-master

Host name: acctl053.west.acme.com

Server port: 389

Admin URL: http://acctl053.west.acme.com:9830

SSL port: 636

Domain name: west.acme.com

Domain suffix: dc=west,dc=acme,dc=com

Domain Admin: domadmin

* Generating a self-signed CA Certificate "WEST CA Certificate" ... completed.

* Generating a server certificate "west-master Certificate" ... completed.

* Enabling SSL on directory server instance west-master ... completed.

* Restarted the Directory Server instance west-master.

* Created directory server subtree.

* Added Domain and Host Administrator user/groups to the directory server.

* Created Domain Administrator account : "domadmin".

* Extended directory server schemas.

* Registered CA and server certificates in directory server.

============================================================================

NOTE: A CA certificate for the "west.acme.com" domain has been created.

This certificate can be pre-installed on HP-UX clients or included as part

of an HP-UX Ignite image. Installing this CA certificate on host will

pre-establish trust with this directory server. The depot file for this

CA certificate is found at : /tmp/ca-west.acme.com.depot

============================================================================

Setting up the LDAP-UX client using the newly created directory server.

Loading CA certificate from directory server to local host ... done.

* Extending schemas ... done.

No LDAP-UX Configuration Profile was found. Creating a new one.

* Downloading profile from DS ... done.

* Configuring ldapux_client.conf ... done.

* Provisioning LDAP-UX Client information into the Directory Server ... done.

* Setting up proxy user ... done.

* Configuring "/etc/nsswitch.conf" and "/etc/pam.conf" to use ldap ... done.

* Starting ldapclientd daemon ... done.

* Starting ldapcconfd ... done.

2.3 Guided installation (autosetup) 47