LDAP-UX Integration B.05.00 Release Notes
1. Log in to your system as root.
2. Run swinstall and install the LDAP-UX Client Services (LdapUxClient subproduct). It
installs the product software in /opt/ldapux and /etc/opt/ldapux directories.
3. If you require ONC publickey, ONC AutoFS, or integration with Active Directory Server,
please see the above section for details about required product versions and how to obtain
them. Install those products and/or patches for this step.
4. Install required patches listed above, if they have not been installed yet.
NOTE: Starting with the LDAP-UX product version B.03.20 or later, system reboot is not required
after installing the product. Although a reboot may be required depending on the patches that
are installed at the same time as this product
2.3.2 Configuring the LDAP-UX Client
LDAP-UX B.05.00 introduces a new method for configuring LDAP-UX, known as guided
installation. This mode greatly simplifies the LDAP-UX installation process, but also makes
several configuration decisions for you. And if you do not already have a directory server in
your environment, and have HP-UX Directory server installed, guided installation mode will
create and configure a new directory server instance for you.
If you already have a directory server running and you want to enable SSL or TLS support with
LDAP-UX, you must configure the LDAP directory server to support SSL or TLS, and install the
security databases (cert8.db and key3.db) on your client before you run the setup program.
For SSL or TLS setup details, refer to LDAP-UX Client Services Administrator’s Guide or LDAP-UX
Client Services with Microsoft Windows Active Directory Administrator’s Guide.
If your browser does not generate cert8.db and key3.db security database files, you must
export the certificate (preferably the root certificate of the Certificate Authority that signed the
LDAP server’s certificate) from your certificate server as a Base64-Encoded certificate and use
the certutilutility to create the cert8.dband key3.db security database files. Follow the
instructions in the Configuring the LDAP-UX client to use SSL or TLS section of the LDAP-UX Client
Services B.05.00 Administrator's Guide to pre-install CA certificates in the /etc/opt/ldapux/
cert8.db and /etc/opt/ldapux/key3.db files.
If you want to use LDAP-UX with Microsoft Windows Active Directory Server 2003 R2/2008
with RFC 2307, see Section 2.3.3 (page 15) before you run setup or migration.
If your name service data (user, group, and so on) have been migrated to an LDAP directory,
you can set up a client system as described below. If you have not migrated your name service
data to an LDAP directory, refer to LDAP-UX Client Services B.05.00 Administrator’s Guide for
complete migration details.
The following shows basic instructions for configuring the LDAP-UX Client Services:
1. When your LDAP directory is configured and contains your name service data, you can run
the setup program or autosetup program and follow the prompts to configure your client:
If you want to use customized installation mode:
cd /opt/ldapux/config
./setup
NOTE: At the end of setup, you will be prompted to start/restart ldapclientd. You can
choose not to start it right away. However, you must start the daemon, ldapclientd, for
LDAP-UX functions to work.
For details on running the setup program, see the LDAP-UX Client Services B.05.00
Administrator’s Guide. Continue to step 2.
If you want to use guided installation mode:
14 LDAP-UX Client Services