LDAP-UX Client Services B.05.01 Administrator Guide for HP directory servers and Windows ADS
3.5.6 Downloading the profile periodically
Using the setup program, you can define a time interval after which the current profiles are being
automatically refreshed. The start time for this periodic refresh is determined by the time the setup
program completes and the value defined for ProfileTTL. Therefore, setup does not allow
you to define a specific time of day when the profiles should be downloaded (refreshed). (For more
detailed information, refer to the ldapclientd(1m) manpage.) If you want to manually determine
the time when the profile is downloaded, follow the steps described in Section 2.5.8 (page 111).
NOTE: Starting with the B.03.00 release, if multiple domains are configured, there will be a
profile for each domain rather than just one profile for the entire system.
3.6 Unconfiguring LDAP-UX (removing the host from the ADS domain)
To remove the LDAP-UX configuration (remove the host from the Windows ADS domain), use the
netleave command located in /opt/ldapux/config. This command supports the following
command-line options:
-D privileged_user_DN Specifies the distinguished name (DN) of a user who has sufficient
directory server privileges to remove a computer account. This
typically specifies the domain administrator's distinguished name
(DN). An example of a DN for this variable is
CN=Administrator,CN=Users,DC=ldaptest,DC=west,DC=com.
-j password_filename Specifies a file that includes the bind password for the user
specified with the -D option. Specifying this file enables the
netleave script to run without prompting you for the password.
-v n Specifies verbose level for debugging purposes, with n specifying
one of the following: 0 (turns off verbose mode), 1, 2, or 3
(specifies the highest level of verbosity).
The following is an example showing the script being run in interactive mode. In this example, the
defaults are taken for the user with privileges to remove the host. The user enters the password.
# /opt/ldapux/config/netleave Enter
Removing this host from the "nwest.acme.com" domain requires
permissions of Windows administrator (or a user with sufficient privilege
to delete the computer account). Please enter the DN of a Windows
administrator or press Return for the default value
[CN=Administrator,CN=Users,DC=nwest,DC=acme,DC=com]: Enter
Please enter the administrator's password: Enter
Unediting the configuration file for the name-service switch...
Successfully unedited the "/etc/nsswitch.conf" file...
editing /etc/pam.conf to unconfig ldap...
Successfully un-edited the "/etc/pam.conf" file...
Your LDAP-UX client has been successfully unconfigured.
158 Installing and configuring LDAP-UX Client Services for a Windows ADS environment