LDAP-UX Client Services B.05.01 Administrator Guide for HP directory servers and Windows ADS

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software

321

322

323

324

325

326

327

328

329

330

Run the following command to delete the entire user account entry, astein, on the LDAP directory

server, ldapsrvA. The -h option overrides the server list defined by the LDAP-UX configuration

profile.

./ldapugdel -t passwd -h ldapsrvA:389 astein

Run the following command to delete the entire user account entry, msmart:

./ldapugdel -t passwd msmart

Run the following command to delete the entire group entry with the distinguished name,

“cn=group1,ou=groups,dc=example,dc=com":

./ldapugdel -t group -D "cn=group1,ou=groups,dc=example,dc=com"

Run the following command to delete only the posixAccount object class and associated attributes,

uidnumber, gidNumber, homeDirectory, loginShell and gecos, without delete the entire

user entry, msmith:

./ldapugdel -t passwd -O msmith

Run the following command to delete only the posixAccount object class and associated attributes,

uidnumber, gidNumber and gecos, without delete the entire user entry, mlee:

./ldapugdel -t passwd -O "homeDirectory,loginShell" mlee

Run the following command to delete only the posixGroup object class and associated attributes,

gidNumber, memberUid and userPassword, without delete the entire group entry, groupA:

./ldapugdel -t group -O groupA

The following command forces ldapugdel to remove the common uid, cn and description

attributes from the user entry, jswartz:

./ldapugdel -t passwd -O -x jswartz

Run the following commands to unset the LDAP_BINDDN and LDAP_BINDCRED environment

variables:

unset LDAP_BINDDN

unset LDAP_BINDCRED

9.3.8 The ldaphostmgr tool

Use the ldaphostmgr tool to add, modify, or delete information about hosts (OS instances) that

are part of the organization. The ldaphostmgr tool:

• Uses the existing LDAP-UX configuration, requiring only a minimal number of command-line

options to discover where to search for host information, such as what directory servers to

contact and proper search filters for finding hosts.

• Uses the existing LDAP-UX authentication configuration to determine how to bind to the LDAP

directory server.

• Supports attribute-mapping for attributes defined by the ipHost object class. Additional

attributes used in a host entry (such as owner, entityRole, and so on) are not mapped.

• Can be used to centrally manage ssh public keys for hosts.

9.3.8.1 Synopsis

ldaphostmgr [-a | -m | -d]

[-F] [-I] [-X] [-Z] [-ZZ] [-ZZZ] [-P] [-C] [-f] [-S] [-V]

[-h servername] [-p port] [-B relbase] [-x domain]

[-O owner[...]] [[-G group] [...]]

-k [[!|?|^]keytype] [-e days_to_expire]]

[-i [ipAddr]] [...]] [[-r role][...]]

[[-A attrval] [...]] [[-R attrval] [...]]

[-c comment] [-E envfile] {(-D DN) | host_name}

[[attr=value][...]]

9.3 LDAP user and group management tools 329