LDAP-UX Client Services B.05.00 with Microsoft Windows Active Directory Server Administrator's Guide (obsolete beyond B.05.00)
a. Click the container of the object you want to create, click the Action menu, choose
New and click on Object.
b. Select the Object Class ( )unixIpNetwork, unixIpProtocol,
unixIpService, or unixOncRpc, and provide the mandatory attribute values
and object will be created.
c. Click the created object, and select Properties from the Action menu to set the RFC
2307 attributes.
11. In the Select Which Properties to View dialog box, select Optional from the drop-down
list on the right.
12. In the Select Which Properties to View dialog box, select the POSIX attribute for which
you want to set values.
13. After you finish all values settings, click OK.
6.7 User and group management
LDAP-UX Integration B.04.15 and later supports the new set of non-interactive LDAP command-line
tools that allow you to list, add, modify or delete user accounts and groups in a directory server.
These new tools provide capabilities to perform those operations without needing to discover the
LDAP server information. Each tool uses the LDAP-UX profile's configuration to discover server
information, such as the host name and port number of the directory server and proper search
filters for finding users and groups. Each tool provides command options that enable you to alter
these configuration parameters. Using these new tools does not require you to have extensive
knowledge of the LDAP schema, protocol and LDAP-UX configuration of each directory server
product. These tools performs installation specific data model interpretation, such as converting
uid-name based group membership (POSIX-style) to X.500 DN based membership (LDAP-style).
The LDAP User and Group (UG) management tools support the following features:
• Create, modify, delete, or list users and groups in a directory server.
• Modify user or group password.
• Support attribute mapping for definition of POSIX attributes used when creating or modifying
entries.
• Support specification of group membership using X.500-style DN based member attributes.
• Provide customized and default templates for defining new user and group entries, which
allows arbitrary data models to be used.
• Support SSL or TLS encryption of data connections to the directory server if requested.
• Provide the ability to connect to an alternate directory server other than that specified by the
LDAP-UX configuration profile.
• Discover programmatically if LDAP-UX is installed, configured and operating properly for a
specified service.
The HP System Management Homepage (SMH) Users and Groups interface uses these LDAP UG
command line tools to implement the web-based user interface functionality that manages POSIX
users and groups in a directory server. This enables HP-UX system administrators to manage users
and groups in a directory server using SMH UG-LDAP web-based interface on an HP-UX 11i v3
system. The HP System Management Homepage (SMH) product supports the LDAP user and group
web-based management feature via HP-UX 11i v3 September, 2007 release.
6.7.1 Ldap user and group command-line tools
The LDAP-UX Integration product supports the following LDAP command-line tools for management
of user and group information in a directory server. These LDAP user and group tools exist in the
/opt/ldapux/bin directory. For detailed information about tool usage, syntax, options,
arguments, environment variables and return codes supported by these tools, see ldapuglist,
114 Administering LDAP-UX Client Services