LDAP-UX Integration B.04.20 Release Notes (June 2009)
If you use R’2 RFC 2307 schema with Windows 2003 R2/2008 ADS, you must run setup to select
RFC2307 before running migration. Alternately, you can manually re-link the attribute
configuration file to RFC2307 before running migration. Use the following command to switch
to RFC2307:
ln -fs /etc/opt/ldapux/default_profile_attr_ads_winr2.ldif \
/etc/opt/ldapux/default_profile_attr_ads.ldif
LDAP-UX Client Services will also use SFU 3.0/3.5 in the absence of the softlink
/etc/opt/ldapux/defualt_profile_attr_ads.ldif.
Profile Format Changes
The profile format has been changed in the product version B.04.10. If you previously configured
LDAP-UX B.04.00 or earlier version using the default profile /etc/opt/ldapux/ldapux_profile.ldif,
and now update the product to version B.04.10 or later, the product will automatically update
/etc/opt/ldapux/ldapux_profile.bin to the new format.
For the following cases, you must manually update the profile format by executing each
PROGRAM line after you update the product to version B.04.10 or later successfully:
• If you previously configured LDA-UX B.04.00 or earlier version using the different profile
other than /etc/opt/ldapux/ldapux_profile.ldif, and now update the product to version B.04.10
or later.
• If you previously configured LDAP-UX B.04.00 or earlier version to work with ADS multiple
domains, and now update the product to version B.04.10 or later, you must manually execute
each PROGRAM line for remote domains configured in /etc/opt/ldapux/ldapux_client.conf.
For example, if /etc/opt/ldapux/ldapux_client.conf contains the following entries:
Service: NSS
PROFILE_ID="local"
LDAP_HOSTPORT="192.10.10.10:389"
PROFILE_ENTRY_DN="cn=ldapuxprof,CN=Configuration,DC=myorg,DC=mycom,DC=com"
PROGRAM="/opt/ldapux/config/create_profile_cache"
PROFILE_ID="eng.myorg.mycom.com"
LDAP_HOSTPORT="192.10.10.11:389"
PROFILE_ENTRY_DN="cn=ldapuxprof,cn=configuration,dc=eng,dc=myorg,dc=mycom,dc=com"
PROGRAM="/opt/ldapux/config/create_profile_cache \
-i /etc/opt/ldapux/domain_profiles/ldapux_profile.ldif.eng.myorig.mycom.com \
-o /etc/opt/ldapux/domain_profiles/ldapux_profile.bin.eng.myorg.mycom.com"
PROFILE_ID="acct.myorg.mycom.com"
LDAP_HOSTPORT="192.10.10.12:389"
PROFILE_ENTRY_DN="cn=ldapuxprof,cn=configuration,dc=acct,dc=myorg,dc=mycom,dc=com"
PROGRAM="/opt/ldapux/config/create_profile_cache \
-i /etc/opt/ldapux/domain_profiles/ldapux_profile.ldif.acct.myorig.mycom.com \
-o /etc/opt/ldapux/domain_profiles/ldapux_profile.bin.acct.myorg.mycom.com"
After you update the product to version B.04.10 or later successfully, you have to execute
PROGRAM from the command line as follows:
# /opt/ldapux/config/create_profile_cache \
-i /etc/opt/ldapux/domain_profiles/ldapux_profile.ldif.eng.myorig.mycom.com\
-o /etc/opt/ldapux/domain_profiles/ldapux_profile.bin.eng.myorg.mycom.com
# /opt/ldapux/config/create_profile_cache \
-i /etc/opt/ldapux/domain_profiles/ldapux_profile.ldif.acct.myorig.mycom.com\
-o /etc/opt/ldapux/domain_profiles/ldapux_profile.bin.acct.myorg.mycom.com
Then you start or restart the client daemon, /opt/ldapux/bin/ldapclientd.
Removing the LDAP-UX Client Services
You can remove the LDAP-UX Client Services from your system using the SD-UX facility. See
the swremove(1M) man page for details.
1. Log in to your system as root.
2. Remove ldap references from /etc/nsswitch.conf and /etc/pam.conf.
Installing and Configuring the LDAP-UX Client Services 21