Nameservice management using LDAP-UX

Ananda Matthur · ‎08-28-2006

Hi,
I am trying to manage user accounts on LDAP directory server using LDAP-UX. I am facing some problems, which I have listed below. Please help.
How can I ensure uniqueness of user ids and usernames, as ldap-ux commands do not check for uniquness?
What per-user security attributes apply for users? (like MAX_LOGIN_TIMES)
How can I enable/disable a user?
How should I manage home directories? Should I create them on an NFS and mount them?

spex · ‎08-28-2006

Hi,

There is extensive LDAP-UX documentation on docs.hp.com:

http://docs.hp.com/en/internet.html#LDAP-UX%20Integration

PCS

Bob Neal-Joslin · ‎08-30-2006

Hi Ananda,

Since LDAP-UX relys on the capabilties of the directory server to resolve most of the questions you've asked. For example,

Red Hat directory server includes a pluging called the uid uniqueness plugin. This plugin will assure that all uid names are unique. But note that it does not check uid numbers, just uid names. But it is possible to build your own plugin to support any kind of check required.

Regarding security policy enforcement, for RHDS, refer to chapter 7, page 283-... of the RHDS Administration Gude. http://docs.hp.com/en/7118/ds71admin.pdf.

Regarding creation of home directories... That's a harder question to answer, not knowing your environment or requirements. But here's a couple of bits of information that might help. On the HP-UX Internet Express bundle, there's a pam_mkhomedir. You can use this tool to create home directories on the fly, for users that don't already have one. Also, LDAP-UX supports storage of automount maps in the directory server, which may help if you go the NFS route.

Take care,

Bob

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Nameservice management using LDAP-UX

Nameservice management using LDAP-UX

Re: Nameservice management using LDAP-UX

Re: Nameservice management using LDAP-UX