ldaphostmgr.1m (2010 09)
l
ldaphostmgr(1M) ldaphostmgr(1M)
determine the domain.
If the
-D option is specified, the value of the RDN (relative distinguished name) will
be used to determine the host_name .
-F Forces creation of new host entry even if particular error conditions occur. These
are:
• Setting the owner of a host to an owner that does not exist. If the
-O option
specified a DN, then that DN will be used as the owner. If a user or group is
specified, then the owner will be set to the DN of user identity used by
lda-
phostmgr when performing the command. Note that in this case, if the
current user identity is already marked as an owner of the host, a
MODIFY_FAILED error will be returned.
• Creating or changing key for the specified remote host, even if the identity of the
remote host could not be verified. This usage is not recommended since the key
loaded into the directory server cannot be trusted.
The
-F option does not override any enforcement that occurs on the directory server
itself, such as adding an attribute without also adding a corresponding required
object class or modifying an attribute for which the user does not have sufficient
directory privilege.
-G group Specifies a group to which this host should be added or removed as a member. The
group entry must already exist and the object class must be either a groupOfNames
or groupOfUniqueNames. group may be specified as:
[
!]short_name|DN
Where short_name is the name of the group as found in the cn attribute of the
group. If the short name is used, the search base specified in the LDAP-UX
configuration profile for the "group" service will be used to determine where to find
the groups. However the search filter from the profile will not be used, instead forc-
ing the groups found to be of type groupOfNames or groupOfUniqueNames. If more
than one group is found with the same name, an error will be returned.
If the
! option is specified, the host is removed as a member from the specified
group. If the ! is specified by itself, the host is removed from all groups it is a
member of.
The
-G option may be specified more than once.
-h servername Specifies the host name and optional port number (hostname:port) of the directory
server where this entry should be added. This option overrides the server list
configured by ldapux (5). The hostname field also supports specification of IPv4 and
IPv6 addresses. Note that when a port is specified for an IPv6 address, the IPv6
address must be specified in square-bracketed form. If the optional port is
unspecified, the port number is assumed to be 389 or 636 for SSL connections (
-Z).
Refer to Binding to the Directory Server below for additional details.
-i ipaddr Adds the specified IP Address to the host entry, in the ipHostNumber attribute (or
mapped attribute). ipaddr may be either an IPv4 or IPv6 style address. IPv6 style
addresses will be normalized to match format recommended by the RFC2307-bis
IETF draft.
If
! is specified at the beginning of ipaddr , the specified IP address will be removed.
If ! is specified, but no IP address is specified, then all values specified in the
ipHostNumber attribute will be removed and replaced with the value 0.0.0.0.
Note: Because the ipHost object class is critical for distinguishing host entries in an
LDAP directory server, by default,
ldaphostmgr will add ipHost objectclass and
the ipHostNumber attribute, using the discovered IP Address for the host.
Note: If
! is specified to remove a specific IP address, and you remove the last IP
address associated with the host, ldaphostmgr will also remove the ipHost
objectclass. This may prevent the host from appearing in LDAP-UX (depending on
the hosts service descriptor search filter in the LDAP-UX profile). If you wish to
maintain the object classification of the ipHost , use ! by itself, to replace it with a
"0.0.0.0".
HP-UX 11i v3: June 2010 Web Release − 3 − Hewlett-Packard Company 3