Manualshelf

LDAP-UX Client Services B.05.01 Administrator Guide for HP directory servers and Windows ADS

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software
61626364656667686970
You can modify the default ACI and give appropriate access rights to change your own
common attributes.
9. Index important attributes for better performance of the directory server.
Since many of your directory requests will be for the following attributes, you should index
these to improve performance. If you do not index them, your directory might search sequentially
causing a performance bottleneck. As a rule of thumb, databases containing more than 100
entries should be indexed by their key attributes.
The following attributes are recommended for indexing:
cn
objectclass
memberuid
uidnumber
gidnumber
uid
ipserviceport
iphostnumber
To index these entries with HP-UX Directory Server, go to the Directory Server Console's
Configuration tab, then the Indexes tab, and click on the Add Attributes button.
10. Determine if you need to support enumeration requests. If you do, increase the Look-Through
limit and the Size limit in the directory server.
Enumeration requests are directory queries that request all of a database, for example all
users or all groups. Enumeration requests of large directory databases could reduce network
and server performance. With large HPDS/RHDS directories and default configurations,
enumerations might fail or provide incomplete data, but the default configuration also might
prevent performance problems from enumerations.
If you need to support enumerations with large directory databases, increase the listed
parameters as described in Preparing Your LDAP Directory for LDAP-UX Integration available
at:
http://www.hp.com/go/hpux-security-docs
Click HP-UX LDAP-UX Integration Software.
In HP-UX Directory Server, the Look-through limit specifies the maximum number of directory
entries to examine before aborting the search operation. The Size limit determines the maximum
number of entries to return to any query before aborting.
For information on these parameters and how to change them, see the HP-UX Directory Server
administrator guide. In addition, see Section 7.12.1.1 (page 247).
11. If you want to enable SSL support with LDAP-UX, you must turn on SSL in your directory server.
For information about configuring SSL (or TLS), see Section 2.4.6 (page 78). For detailed
information on how to set up and configure your directory server to enable SSL communication
over LDAP, see the HP-UX Directory Server administrator guide at:
http://www.hp.com/go/hpux-security-docs
Click HP-UX Directory Server.
2.4.5 Configuring LDAP-UX Client Services for an HP directory server environment
The following list summarizes how to configure LDAP-UX Client Services with HP-UX Directory
Server. For more information about performing a default configuration, see Section 2.4.5.1
2.4 Customized installation (setup) for an HP directory server environment 67