LDAP-UX Integration B.04.10 Release Notes
Table Of Contents
- LDAP-UX Integration B.04.10 Release Notes
- Table of Contents
- 1 LDAP-UX Integration B.04.10 Release Note
- LDAP-UX Integration Overview
- LDAP-UX Client Services
- What’s New in LDAP-UX Client Services B.04.10
- Known Problems fixed in LDAP-UX Client Services A.04.10
- Compatibility and Installation Requirements for LDAP-UX Client Services
- Installing and Configuring the LDAP-UX Client Services
- Documentation
- Known Problems and Workarounds for LDAP-UX Client Services
- Limitations in LDAP-UX Client Services
- Services
- /etc/pam.conf
- LDAP Directory Interoperability
- Supported Name Service Databases
- Duplicated Data Entries in ADS Multiple Domains
- SSL With Windows 2000 Active Directory Server
- Limitations of Printer Configurator
- Unsupported Commands
- Clear Text Passwords
- Man page for ldapclientd.conf
- LDAP Security Policy Enforcement
- SASL/GSSAPI Profile Download Support
- Changing authentication methods
- Supported Features For Particular Directory Servers
- Additional Limitations with Active Directory
- NIS/LDAP Gateway
used to query the current status of the LDAP schema on the LDAP directory server, as well
as to extend the LDAP directory server schema with new attribute types and object classes.
The ldapschema utility was designed to support directory servers from several vendors
and is currently supported with Netscape/Red Hat Directory Serve and Microsoft Windows
2000, 2003 and 2003 R2 Active Directory Server. Refer to the ldapschema (1) man page
or the “Schema Extension Utility” section in the LDAP-UX Client Services B.04.10
Administrator’s Guide or LDAP-UX Client Services B.04.10 with Windows Active Directory Server
Administrator’s Guide for detailed information.
• Configurable Peer Certificate Policy for SSL/TLS
This release provides adjustable SSL/TLS certificate validation levels. In addition to the
protection of communication provided by SSL/TLS between the clients (LDAP-UX) and the
servers (LDAP directory servers), extra validation of the server and client identities can be
performed.
Refer to the “Adjusting the Peer Certificate Policy” in the LDAP-UX Client Services B.04.10
Administrator’s Guide or LDAP-UX Client Services B.04.10 with Windows Active Directory Server
Administrator’s Guide for detailed information on how to configure the certificate validation
levels.
• AutoFS/Automount Support for Microsoft Windows Active Directory Server
AutoFS is a client-side service that automatically mounts appropriate file systems when
users request access to them. If an automounted file system has been idle for a period of
time, AutoFS unmounts it.
Previous LDAP-UX releases already support automount functionality on Netscape/Red Hat
Directory Server. This release extends automount functionality support on Microsoft
Windows 2000, 2003 and 2003 Release 2 (R2) Active Directory Server.
LDAP-UX Client Services supports the automount service under the AutoFS subsystem.
LDAP-UX supports this feature that allows users to store and manage AutoFS maps in an
LDAP directory server. The LDAP-UX Client Services supports the RFC2307-bis automount
schema. In order to enable the AutoFS for LDAP support, the AutoFS patches are required,
see the “Patch Requirements” (page 12) for details.
• LDAP Printer Configurator Support for Microsoft Windows Active Directory Server
Previous LDAP-UX releases already support the LDAP printer configurator on Netscape/Red
Hat Directory Server. This release extends LDAP printer configurator support on Microsoft
Windows 2000, 2003 and 2003 Release 2 (R2) Active Directory Server. Administrators can
store their LPD printer entries in Windows ADS and the printer configurator is able to
retrieve required LPD printer information.
The LDAP-UX Client Services is integrated with the printer configurator to consolidate the
printer configuration and control of printer devices to the LDAP directory server for a single
location of printer management.
If this feature is enabled, the LDAP-UX product daemon, ldapclientd, automatically
searches printer objects configured in the LDAP server and executes lpshut, lpadmin
and lpsched commands to add, modify, and remove printers accordingly for the local
system.
Several new configuration parameters are available for you to customize and control the
behaviors of the LDAP printer configurator.
For detailed information on how LDAP-UX supports the printer configurator, and how to
configure the printer configurator to control its behaviors, refer to the “LDAP Printer
Configurator Support” chapter in the LDAP-UX Client Services B.04.10 with Windows Active
Directory Server Administrator’s Guide (J4269-90064) at http://docs.hp.com/en/internet.html
10 LDAP-UX Integration B.04.10 Release Note