LDAP-UX Client Services B.05.01 Administrator Guide for HP directory servers and Windows ADS

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software

181

182

183

184

185

186

187

188

189

190

7 Administering LDAP-UX Client Services

This chapter describes how to keep your clients running smoothly and how to expand your computing

environment.

7.1 Managing the LDAP-UX client daemon

This section describes the following:

• Overview of ldapclientd daemon operation

• Configurable parameters and syntax in the ldapclientd configuration file,

ldapclientd.conf

• Command line syntax and options for the ldapclientd command

7.1.1 Overview

The LDAP-UX client daemon enables LDAP-UX clients to work with LDAP directory servers. To perform

this role, the daemon executes the following tasks:

• Receives requests from properly configured applications and services

• Generates connections and requests to the configured directory server

• Returns appropriate reply to requesting applications or services

In addition to the basic tasks of enabling authentication for applications and services, the client

supports the following features:

• Multiple Windows domains: The client daemon enables LDAP-UX to use multiple domains for

Active Directory Server (ADS). The daemon also enables PAM Kerberos to authenticate POSIX

users stored in multiple domains; it supports multiple domains in the Windows 2003 R2 or

2008 Active Directory Server (ADS).

• X.500 group membership.

• Automatic Profile Downloading: This feature updates the LDAP client configuration profile by

downloading a newer copy from the directory server when the profile TTL (Time To Live)

configuration value expires.

• Managing the remote LP printer configuration: The client daemon automatically searches for

certain printer objects configured in the LDAP server and executes lpshut, lpadmin, and

lpsched commands to add, modify, and remove printers accordingly for the local system.

By default, the LDAP printer configurator is enabled.

By default, ldapclientd starts at system boot time. The ldapclientd command can also be

used to launch the client daemon manually, or to control it when the daemon is already running.

For information about the ldapclientd command and its parameters, see Section 7.1.2 (page 182)

and the ldapclientd manpage.

IMPORTANT: For LDAP-UX functionality, the client daemon /opt/ldapux/bin/ldapclientd

must be running.

7.1.2 Using the ldapclientd administration tool

7.1.2.1 Starting the client

Use the following syntax to start the client daemon.

/opt/ldapux/bin/ldapclientd <[-d <level>] [-o<stdout|syslog|file[=size]>]

[-z]

182 Administering LDAP-UX Client Services