Manualshelf

LDAP-UX Client Services B.05.00 with Microsoft Windows Active Directory Server Administrator's Guide (obsolete beyond B.05.00)

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software
41424344454647484950
20. Enter the maximum time in seconds the client should wait for binding to the directory before
aborting ("bind time"). Enter 0 for no time limit.
CAUTION: The default client binding time is 5 seconds. Depending on the load on your
directory, this default value may not be high enough to service all database requests.
21. Enter the maximum time in seconds the client should wait for directory searches before aborting.
Enter 0 for no time limit.
22. Enter the Profile Time To Live (TTL) value. This value defines the time interval between
automatic downloads (refreshes) of new configuration profiles from the directory. Automatic
refreshing ensures that the client is always configured using the newest configuration profile.
If you want to disable automatic refresh or manually control when the refresh occurs, enter a
value of 0. Refer to Section 2.5.6 (page 62)
23. In this step, the setup program initiates a dialog where you can remap the standard object
class attributes to alternate attributes. You may want to do this if the attributes in your directory
do not conform to the object classes defined in RFC 2307.
You can remap the attributes for any of the supported services: passwd, shadow passwd,
group, PAM, netgroup, rpc, protocols, networks, hosts, services and automount.
NOTE: Make sure that the attribute names are entered correctly to avoid unpredictable
results later.
See RFC 2307 at the following website for a description of the standard object classes and
attributes:
http://www.ietf.org/rfc/rfc2307.txt
At this point, the setup program will display the following dialog:
LDAP-UX Client Services supports the following services:
1.Password 7.Networks
2.Shadow passwd 8.Hosts
3.Group 9.Services
4.PAM (Pluggable Authentication Module)10.Printers
5.RPC 11.Automount
6 Protocols
Each services uses a standard object class (defined by RFC 2307)
You can remap any of these attributes to alternate attributes.
Do you want to remap any of the standard RFC 2307 attributes?
Enter yes” if you want to remap object class attributes for any of the supported services. Then
go to Section 2.4.5.2.1 (page 44) for details of the procedures.
Enter “no” to this prompt to continue to step 25 of the setup process.
24. In this step, the setup program initiates a dialog where you can create a custom search
descriptor. A custom search descriptor allows you to specify a different search location or
filter for retrieving entries for services supported by LDAP-UX Client. Each name service can
have up to three different search descriptors. A custom search descriptor consists of three
parts: a search base DN, scope, and filter.
NOTE: Custom search descriptors have no relevance for PAM Kerberos. PAM Kerberos is
the only certified authentication method for LDAP-UX Client Services with Active Directory.
Each service can have up to three different search descriptors. The client uses the search
descriptors in order until it finds what it is looking for.
2.4 Customized installation (setup) 41