HPE Community
Operating System - HP-UX
1833729 Members
2460 Online
110063 Solutions
New Discussion

Re: Active Directories and HP-UX

 
Timothy P. Jackson
Valued Contributor

‎02-21-2005 03:43 PM

‎02-21-2005 03:43 PM

Active Directories and HP-UX

I would like to validate my HP-UX logins from my AD domain controller. I am just starting on this adventure and I need a little help on where to get started.

Do I need to install LDAP-UX?

How does this interface with PAM?

Does this have anything to do with Windows Services for Unix?

Any help on where I should start would be greatly appreciated.

Thank You In Advance!

Tim
0 Kudos
Reply
5 REPLIES 5
Ron Luman_1
Occasional Advisor

‎02-21-2005 04:03 PM

‎02-21-2005 04:03 PM

Re: Active Directories and HP-UX

Hi Tim,

I'll try to briefly answer your questions:

- Yes, you need LDAP-UX

- LDAP-UX provides a couple of components including a PAM module, an LDAP NSS back-end (to perform, among other things, uid->name mapping for commands like 'ls',) and some additional glue.

- Yes. Installing Windows SFU will put into place the necessary schema on AD to allow interoperation with HP-UX (or other unices.)

- A good place to start is the guide to using LDAP-UX with AD http://docs.hp.com/en/J4269-90041/index.html


Good Luck,

--Ron
0 Kudos
Reply
Timothy P. Jackson
Valued Contributor

‎02-21-2005 04:10 PM

‎02-21-2005 04:10 PM

Re: Active Directories and HP-UX

Thanks Ron!

I will start with going throught this manual.

Tim
0 Kudos
Reply
Andrew Cowan
Honored Contributor

‎02-22-2005 06:43 PM

‎02-22-2005 06:43 PM

Re: Active Directories and HP-UX

Slightly of topic but you can also integrate with AD using Samba 3.x.
0 Kudos
Reply
Peter Godron
Honored Contributor

‎02-22-2005 07:28 PM

‎02-22-2005 07:28 PM

Re: Active Directories and HP-UX

Tim,
you may want to keep an eye on what replies come back on thread:
http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=820709
Perhaps you can contribute to this thread.
Thanks
0 Kudos
Reply
Jeff Carlin
Frequent Advisor

‎02-24-2005 08:20 AM

‎02-24-2005 08:20 AM

Re: Active Directories and HP-UX

I'm already into this same thing up to my neck. Here's my thread about a validation problem I am having with FTP:
http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=822049
My problem isn't with getting credentails from AD (that works fine) it is in passing credentials to other UNIX systems.

I'm using Kerberos to validate users against our main directory (Microsoft 2003 Active Directory). It works great currently for signing in to the UNIX system. The user is prompted for their password on AD (windows password) and if they type that correctly they are allowed into the system. I followed some white papers on getting it set up.

The ones that helped me the most were:
http://www6.itrc.hp.com/service/cki/docDisplay.do?docLocale=en_US&docId=200000077186709
http://docs.hp.com/en/1408/ADSLDUX.pdf
http://docs.hp.com/en/J5849-90007/index.html

Also, I can't recommend more the O'reilly book: "Kerberos The Definitive Guide" By Jason Garmon ISBN:0-596-00403-6

It helped me out a lot in understanding Kerberos.

Hope this helps you along!
Jeff
Where wisdom is called for, force is of little use. --Of course, a hammer does wonders for relieving stress.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.