Manualshelf

LDAP-UX Integration B.05.01 Release Notes

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software
11121314151617181920
However, because the port number is different, only one of the following entries can be stored in
to an LDAP server:
netdist 2101/tcp
-or-
netdist 2102/tcp
2.7.2 /etc/pam.conf
HP delivers two PAM example configuration files, /etc/pam.ldap
and/etc/pam.ldap.trusted, in this release. You need to configure /etc/pam.conf properly
for LDAP-UX to work as expected. When you integrate LDAP-UX Client Services with the HP-UX
Directory Server and your system is in Standard Mode, the pam_unix library must be defined
before pam_ldap as they are in the /etc/pam.ldap file. If your system is in the Trusted Mode,
the pam_ldap library must be defined before pam_unix, and both libraries must be specified as
"required" under "Session management". For more information and an example of a Trusted
Mode PAM configuration file and other PAM configuration files, see the appendix titled “Sample
PAM configuration (pam.conf) files in the LDAP-UX Client Services B.05.01 Administrator Guide.
2.7.3 Maximum user name length of 8 characters on a Trusted Mode system
A user logins to a Trusted Mode system on an HP-UX 11i v2 or v3 machine, HP-UX supports the
maximum user length of eight characters.
2.7.4 Long user and group name support
LDAP-UX supports long user and group name of up to 255 characters on an HP-UX 11i v3 system
when you explicitly enable the system for expanded user and group name feature by using the
lugadmin -e command. For more information, see the swlist(1M) manpage.
On HP-UX 11i v2, the maximum length of the user or group name can be only eight characters.
2.7.5 LDAP directory interoperability
The LDAP-UX product has been certified under the OpenGroup’s works with LDAP 2000 branding.
LDAP-UX has been designed to work with any directory server that can support the RFC 2307
schema or similar syntactic schema (such as the Microsoft Services For Unix 3.5 schema). The
LDAP-UX product requires the "Configuration Profile" schema, which is defined by RFC 4876,
available at http://www.rfc-editor.org. at the IETF drafts web site http://www.ietf.org/
ID.htmlhttp://www.ietf.org/ID.html.
The "Configuration Profile" schema will be automatically installed on directory servers that support
online modification of the subschema subentry.
The following list of directories have been tested or minimally verified.
HP-UX Directory Server for HP-UX 8.1 - Fully tested and supported
Red Hat Directory Server 8.0 for HP-UX - Verified and supported
Microsoft Windows 2003 R2/2008 Active Directory - Fully tested and supported
OpenLDAP 2.1.13a - Verified with limited support
Manual schema installation required
Novell eDirectory 8.7 and 8.8 - Minimally verified with limited support
Manual schema installation required
Password modification via the passwd(1) command not yet supported.
20 LDAP-UX Client Services