HPE Community
Operating System - HP-UX
1826421 Members
3199 Online
109692 Solutions
New Discussion

Integrating HP-UX and Active Directory - restricting login

 
SOLVED
Go to solution
David Sickmiller
Occasional Contributor

‎07-31-2003 09:21 AM

‎07-31-2003 09:21 AM

Integrating HP-UX and Active Directory - restricting login

I have been researching how to have HP-UX systems authenticate against Active Directory. I have read the HP documentation and am planning to use Kerberos and LDAP.

In the documentation, I read that "the default is to allow all users stored in the LDAP directory to login." The recommended solution is to configure ldapux_client.conf to disable certain range(s) of UIDs.

I have about 20 HP-UX servers. Each of them has a different combination of user accounts. I want to be able to centrally control (from Active Directory) which users can access which servers instead of separately maintaining ldapux_client.conf on each server. So far I have not seen documentation explaining how to do this..... does anyone have the same problem?

I have an idea how to solve this situation, but I am unsure and have not tested it. I think I could configure each server to use a different serviceSearchDescriptor. e.g. password: (&(objectclass=user)(uidnumber=*)(memberOf=CN=SERVER1_Users,CN=Users,DC=mydomain,DC=mycorp,DC=com))

Has anyone experienced this problem before? Any solutions?
0 Kudos
Reply
4 REPLIES 4
someone_4
Honored Contributor

‎07-31-2003 09:54 AM

‎07-31-2003 09:54 AM

Re: Integrating HP-UX and Active Directory - restricting login

Hi

I have done this before and it works.

here is the link to the doc.

http://www1.itrc.hp.com/service/cki/search.do?category=c0&mode=id&searchString=WHBKBRC00011164&searchCrit=allwords&docType=Security&docType=Patch&docType=EngineerNotes&docType=BugReports&docType=Hardware&docType=ReferenceMaterials&docType=ThirdParty&search.x=46&search.y=5


Richard
0 Kudos
Reply
David Sickmiller
Occasional Contributor

‎08-01-2003 07:46 AM

‎08-01-2003 07:46 AM

Re: Integrating HP-UX and Active Directory - restricting login

Richard,

I clicked the link you provided, but I got a page that said "Note: Your search produced no results. It is either too specific or has spelling errors. Try a different search string or change your search criteria selection."

Any ideas?

Thanks,
David
0 Kudos
Reply
someone_4
Honored Contributor

‎08-01-2003 08:42 AM

‎08-01-2003 08:42 AM

Solution

Re: Integrating HP-UX and Active Directory - restricting login

Hi David

Check out the attachment ..
it is the same thing ..

Richard
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.