LDAP-UX Client Services B.05.00 with Microsoft Windows Active Directory Server Administrator's Guide (obsolete beyond B.05.00)

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software

Contents

1 Introduction.............................................................................................10

1.1 Overview of LDAP-UX Client Services....................................................................................10

1.2 How LDAP-UX Client Services works.....................................................................................11

2 Installing LDAP-UX Client Services...............................................................14

2.1 Before you begin: general installation and configuration considerations....................................14

2.2 Choosing the method of installation: guided or customized.....................................................14

2.3 Guided installation (autosetup)...........................................................................................15

2.3.1 What autosetup does.................................................................................................16

2.3.2 Using the guided installation autosetup command—syntax and options............................18

2.3.2.1 autosetup options...............................................................................................18

2.3.2.2 autosetup environment variables..........................................................................20

2.3.2.3 autosetup command examples.............................................................................20

2.3.3 Guided installation steps: First Installation into a Windows Domain mode.........................21

2.3.3.1 Interactively running First Installation into a Windows Domain mode.........................22

2.3.3.2 Automating First Installation into a Windows Domain mode.....................................24

2.3.3.3 Post-installation steps for First Installation into a Windows Domain mode ..................24

2.3.4 Guided installation steps: Existing Windows LDAP-UX Configuration mode mode...............24

2.3.4.1 Interactively running Existing Windows LDAP-UX Configuration mode mode...............25

2.3.4.2 Automating Existing Windows LDAP-UX Configuration mode mode..........................27

2.3.4.3 Post-installation steps for Existing Windows LDAP-UX Configuration mode mode ........27

2.4 Customized installation (setup)............................................................................................27

2.4.1 Summary of installing and configuring LDAP-UX Client

Servicesconfigurationsummaryinstallationsummary..................................................................27

2.4.2 Planning your customized installationInstallationPlanningPlanning your environment...........28

2.4.3 Installing LDAP-UX Client Services on a client................................................................33

2.4.4 Configuring active directory for HP-UX

integrationconfigurationdirectorydirectoryconfiguration...........................................................34

2.4.4.1 Step 1: Install Active DirectoryinstallationActive DirectoryActive Directoryinstalling.......34

2.4.4.2 Step 2: Create a proxy user................................................................................35

2.4.4.3 Step 3: Add an HP-UX client machine account to Active Directory............................36

2.4.4.4 Step 4: Use ktpass to create the keytab file for the HP-UX client machine...................36

2.4.4.5 Step 5: Add POSIX attributes into the global catalog..............................................37

2.4.5 Configuring LDAP-UX Client Services............................................................................37

2.4.5.1 Step 1: Install the PAM Kerberos product ..............................................................37

2.4.5.2 Step 2: Run the setup program............................................................................38

2.4.5.2.1 Remapping attributes for services..................................................................44

2.4.5.3 Step 3: Configure your HP-UX machine to authenticate using PAM Kerberos..............46

2.4.5.4 Step 4: Configure the Name Service Switch (NSS).................................................47

2.4.5.5 Step 5: Configure the PAM Authorization Service Module (PAM_AUTHZ)..................47

2.4.5.6 Step 6: Configure the Disable Login Flag..............................................................47

2.4.6 Configuring the LDAP-UX Client Services with SSL or TLS support.....................................48

2.4.6.1 Configuration parameters....................................................................................48

2.4.6.2 Configuring the LDAP-UX Client to use SSL or TLS...................................................48

2.4.6.2.1 Steps to create certificate database files using the certutil utility........................49

2.4.6.2.2 Adjusting the Peer Certificate policy.............................................................50

2.4.6.3 SSL/TLS ciphers.................................................................................................52

2.5 Post-installation configuration tasks......................................................................................52

2.5.1 Importing name service data into your directory.............................................................52

Contents 3