Manualshelf

LDAP-UX Client Services B.05.01 Administrator Guide for HP directory servers and Windows ADS

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software
71727374757677787980
10. Next enter either the DN of a new profile, or the DN of an existing profile you want to use,
from “Configuration worksheet” (page 403).
To display all the profiles in the directory, use a command like the following:
ldapsearch -b o=hp.com objectclass=DUAConfigProfile dn
If you are using an existing profile, setup configures your client, downloads the profile, and
exits. In this case, continue with the next step.
11. If you are creating a new profile, enter the DN and password of the directory user who can
create a new profile from “Configuration worksheet” (page 403).
12. Next, it will prompt you for the following information:
Select authentication method for users to bind/authenticate to
the server
1. SIMPLE
2. SASL DIGEST-MD5
To accept the default shown in brackets, press the Return key.
Authentication method: [1]:
Press Enter if you choose to accept SIMPLE authentication method, type 2 if you choose SASL
DIGEST-MD5 authentication method for the following prompt:
Authentication method: [1]:
For an overview of the various authentication methods you can configure with LDAP-UX Client
Services, including their strengths and weaknesses, see Section 2.4.6.1 (page 79).
13. Next enter the host name and port number of the directory where your name service data is,
from “Configuration worksheet” (page 403). For high availability, each LDAP-UX client can
look for name service data in up to three different directory hosts. You can enter up to three
hosts, to be searched in order.
14. Enter the base DN where clients should search for name service data from “Configuration
worksheet” (page 403).
15. You can quickly configure a directory server and the first client by accepting the remaining
default configuration parameters when prompted.
If you want to use the SASL DIGEST-MD5 authentication method, you must configure a proxy
user with its credential level.
Using the SASL DIGEST-MD5 authentication, the password must be stored in the clear text in
the LDAP directory.
Table 6 shows the configuration parameters and the default values they are configured with.
Table 6 Configuration parameter default values
Default valueParameter
AnonymousType of client binding
5 secondsBind time limit
no limitSearch time limit
YesUse of referrals
0 - infiniteProfile TTL (Time To Live)
YesUse standard RFC 2307 object class attributes for supported services
YesUse default search descriptions for supported services
SimpleAuthentication method
To change any of these default values, see Section 2.4.5.2 (page 72).
2.4 Customized installation (setup) for an HP directory server environment 71