LDAP-UX Client Services B.05.00 with Microsoft Windows Active Directory Server Administrator's Guide (obsolete beyond B.05.00)

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software

100

seconds). The minimum value is 1800 (30 minutes) and the maximum

value is 1209600 (2 weeks).

max_printers= 50 (default value)

Defines the maximum printer objects that printer configurator services will

handle. For example, a number of 100 printer entries is returned to the

printer configurator after a scheduled printer search. If the max_printers

value is set to 50, only the first 50 printer entries received by the printer

configurator will be processed. For this configuration parameter, the value

must be greater than 0 and the maximum value is unlimited. The default

value is 50.

lpadmin_option

Defines the lpadmin options. Do not include the-p, -orm and -orp

options in the option fields. The LDAP printer configurator provides the

required information of printer name (-p), remote machine name (-orm)

and remote printer name (-orp) during the run time. Do not include any

other parameters, such as stderr or stdout redirection options. If the option

fields of the lpadmin_option parameter are empty or the

lpadmin_option parameter does not exist, the default lpadmin options

are used. By default, lpadmin_option=-mrmodel -v/dev/null

-ocmrcmodel -osmrsmodel.

6.1.4.4 Example configuration file

The following is a sample ldapclientd.conf configuration file.

#!/sbin/sh

# @(#) $Revision: 1.12 $

# ldap client daemon configuration.

# Please note, the below keys are case sensitive.

# Example:

# [passwd]

# enable=yes

# poscache_ttl=600

# negcache_ttl=600

# Note that "TTLs" (time to live) values are in seconds.

# Note that cache sizes are in bytes.

[StartOnBoot]

enable=yes

[general]

# If the proxy user is used and defined in /etc/opt/ldapux/pcred, this

# flag indicates if the proxy user does not hold privileged LDAP

# credentials, meaning the proxy user is restricted in it's rights to

# access "private" information in the directory server. Because

# ldapclientd provides an interface to access arbitrary information

# (attributes), ldapclientd needs to know if the proxy credential has

# more rights that it should.

# By default, and if set to zero, ldapclientd assumes the proxy user

# has privledged credentials, and thus will not allow access to attributes

# beyond that of the RFC2307 schema. However, you can ammend the list of

# allowed attributes using the allowed_attribute paramter defined below.

# If proxy_is_restricted is set to 1, then you are attesting that the

# directory server is restricting access to private or other confidential

# information from access by the proxy user.

proxy_is_restricted=1

# Allows the ldapclientd interface to return attributes that are associated

# with RFC2307-based services (such as users and groups), but that those

# attributes are not specifically part of the RFC2307 schema. Any attribute

# specified below should be considered public information.

allowed_attribute=hosts:sshPublicKey

allowed_attribute=passwd:sshPublicKey

6.1 Using the LDAP-UX client daemon 91