HPE Community
Operating System - HP-UX
1833788 Members
2626 Online
110063 Solutions
New Discussion

LDAP directory server

 
Todd McDaniel_1
Honored Contributor

‎11-23-2009 01:50 PM

‎11-23-2009 01:50 PM

LDAP directory server

My specific case is with AIX, but I would think LDAP can be used on multiple unix flavors. I dont have any prior exposure to using LDAP so I need some assistance here.

We have a client who uses LDAP directory server where apparently none of their servers have accounts present, unlike NIS where there is a master server that has user accounts visible in the passwd file.

I am trying to understand how you would audit the users of such servers since there is no actual account to audit other than in the database, even on the actual LDAP directory server.

How would you audit users for password aging/complexity/length etc... obsolete users and such under normal unix based auditing?

I need to understand how this works so I can apply it to our server management software.

regards,

Todd McDaniel
Unix, the other white meat.
0 Kudos
Reply
1 REPLY 1
Steven E. Protter
Exalted Contributor

‎11-23-2009 03:05 PM

‎11-23-2009 03:05 PM

Re: LDAP directory server

Shalom Todd,

The options in this case depend on what LDAP server is in use.

The Red Hat Directory server does have a GUI that lets you configure such options as password complexity.

Audits would have to take place on the directory server. There are reports that can be run from the command line.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.