LDAP-UX Client Services B.05.00 Administrator's Guide

1. Create a valid posix user and group. Add this user as a member of this group using the

attribute "member" instead of "memberuid". Here is an example ldif file specifying xuser2

as a member of the group xgrpup1:

#cat example_ids.ldif

dn: cn=xgroup1,ou=Groups,o=hp.com]

objectClass: posixGroup

objectClass: groupofnames

objectClass: top

cn: xgroup1

userPassword: {crypt}*

gidNumber: 999

member: uid=xuser2,ou=People,o=hp.com

dn: uid=xuser2,ou=People,o=hp.com

uid: xuser2

cn: xuser2

objectClass: top

objectClass: account

objectClass: posixAccount

userPassword: {crypt}xxxxxxxxxxxxx

loginShell: /bin/ksh

uidNumber: 9998

gidNumber: 999

homeDirectory: /home/xuser2

2. Make sure that the file /etc/nsswitch.conf specifies ldap for group service:

cat /etc/nsswitch.conf

group: files ldap

3. Verify:

# grget -n xgroup1

xgroup1:*:999: xuser2

If xuser2 shows up as a member of xgroup1, then your setup is correct.

94 Installing and configuring LDAP-UX Client Services