HPE GreenLake Administration
- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: new to LDAP
Operating System - HP-UX
1836873
Members
2126
Online
110110
Solutions
Forums
Categories
Company
Local Language
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-23-2003 11:58 AM
04-23-2003 11:58 AM
new to LDAP
I am investigating LDAP and I have some questions:
1 - I use NIS for groups, logins, passwords, mail aliases, and homedirs. Can LDAP replace NIS an all of these functions?
2 - If it can replace all of these how does it work? Or where is a good place to look.
3 - How do I keep everyone with an LDAP entry from logging into my servers?
4 - How does HP-UX work with LDAP logins longer than 8 characters?
Thanks.
1 - I use NIS for groups, logins, passwords, mail aliases, and homedirs. Can LDAP replace NIS an all of these functions?
2 - If it can replace all of these how does it work? Or where is a good place to look.
3 - How do I keep everyone with an LDAP entry from logging into my servers?
4 - How does HP-UX work with LDAP logins longer than 8 characters?
Thanks.
6 REPLIES 6
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-24-2003 01:28 AM
04-24-2003 01:28 AM
Re: new to LDAP
Hi
Try
http://www.padl.com/hpux/
To get you going
steve Steel
Try
http://www.padl.com/hpux/
To get you going
steve Steel
If you want truly to understand something, try to change it. (Kurt Lewin)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-24-2003 03:07 AM
04-24-2003 03:07 AM
Re: new to LDAP
http://docs.hp.com/hpux/onlinedocs/J4269-90006/00/00/1-con.html
live free or die
harry
live free or die
harry
Live Free or Die
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-24-2003 03:22 AM
04-24-2003 03:22 AM
Re: new to LDAP
Jeff,
AFAIK,HP supplies only NIS-LDAP gateway (a NIS
server modified to store its information in LDAP Database instead of NIS maps) and LDAP clients software.What I guess is that NIS-LDAP
gateway requires LDAP (Directory) Server and
acts as translator rpc-to-ldap.
If you need a Directory server you can try OpenLDAP - http://www.openldap.org/
or Sun/Netscape (which isn't free).
For general info try :
http://www.openldap.org/doc/admin21/
Another,hp specific white paper:
http://docs.hp.com/hpux/onlinedocs/internet/uxint.html
Zeev
AFAIK,HP supplies only NIS-LDAP gateway (a NIS
server modified to store its information in LDAP Database instead of NIS maps) and LDAP clients software.What I guess is that NIS-LDAP
gateway requires LDAP (Directory) Server and
acts as translator rpc-to-ldap.
If you need a Directory server you can try OpenLDAP - http://www.openldap.org/
or Sun/Netscape (which isn't free).
For general info try :
http://www.openldap.org/doc/admin21/
Another,hp specific white paper:
http://docs.hp.com/hpux/onlinedocs/internet/uxint.html
Zeev
So computers don't think yet. At least not chess computers. - Seymour Cray
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-01-2003 09:31 AM
05-01-2003 09:31 AM
Re: new to LDAP
1. Yes. However LDAP-UX does not directly support mail aliases. Instead you can configure sendmail to look directly in an LDAP directory.
2. Information specific to Unix is stored in the LDAP directory under a unix schema (RFC 2307.) The LDAP protocol is used to retrive and present this information to the HP-UX OS and applications through the name service APIs like getpwnam(). A name service switch /etc/nsswitch.conf configures which backends, like NIS, files or LDAP should be used.
3. Several ways: First, only users with unix attributes (unix user id numbers, etc..) are visible to HP-UX. In addition, you can configure pam_ldap search filters to control which users may login. Or with netgroups (in ldap or nis) you can limit logins the more traditional NIS-way, using the pam_authz library (part of LDAP-UX.)
4. Login names greater than 8 characters don't work properly on HP-UX. The alternatives are to use a separate attributue in the directory for an HP-UX account name, or to assure that all uid names are 8 characters or less (sorry.)
Aside from the other recommended readings, start by looking at http://docs.hp.com/hpux/internet. Look for LDAP-UX Integration.
Bob
2. Information specific to Unix is stored in the LDAP directory under a unix schema (RFC 2307.) The LDAP protocol is used to retrive and present this information to the HP-UX OS and applications through the name service APIs like getpwnam(). A name service switch /etc/nsswitch.conf configures which backends, like NIS, files or LDAP should be used.
3. Several ways: First, only users with unix attributes (unix user id numbers, etc..) are visible to HP-UX. In addition, you can configure pam_ldap search filters to control which users may login. Or with netgroups (in ldap or nis) you can limit logins the more traditional NIS-way, using the pam_authz library (part of LDAP-UX.)
4. Login names greater than 8 characters don't work properly on HP-UX. The alternatives are to use a separate attributue in the directory for an HP-UX account name, or to assure that all uid names are 8 characters or less (sorry.)
Aside from the other recommended readings, start by looking at http://docs.hp.com/hpux/internet. Look for LDAP-UX Integration.
Bob
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-01-2003 09:32 AM
05-01-2003 09:32 AM
Re: new to LDAP
1. Yes. However LDAP-UX does not directly support mail aliases. Instead you can configure sendmail to look directly in an LDAP directory.
2. Information specific to Unix is stored in the LDAP directory under a unix schema (RFC 2307.) The LDAP protocol is used to retrive and present this information to the HP-UX OS and applications through the name service APIs like getpwnam(). A name service switch /etc/nsswitch.conf configures which backends, like NIS, files or LDAP should be used.
3. Several ways: First, only users with unix attributes (unix user id numbers, etc..) are visible to HP-UX. In addition, you can configure pam_ldap search filters to control which users may login. Or with netgroups (in ldap or nis) you can limit logins the more traditional NIS-way, using the pam_authz library (part of LDAP-UX.)
4. Login names greater than 8 characters don't work properly on HP-UX. The alternatives are to use a separate attributue in the directory for an HP-UX account name, or to assure that all uid names are 8 characters or less (sorry.)
Aside from the other recommended readings, start by looking at http://docs.hp.com/hpux/internet. Look for LDAP-UX Integration.
Bob
2. Information specific to Unix is stored in the LDAP directory under a unix schema (RFC 2307.) The LDAP protocol is used to retrive and present this information to the HP-UX OS and applications through the name service APIs like getpwnam(). A name service switch /etc/nsswitch.conf configures which backends, like NIS, files or LDAP should be used.
3. Several ways: First, only users with unix attributes (unix user id numbers, etc..) are visible to HP-UX. In addition, you can configure pam_ldap search filters to control which users may login. Or with netgroups (in ldap or nis) you can limit logins the more traditional NIS-way, using the pam_authz library (part of LDAP-UX.)
4. Login names greater than 8 characters don't work properly on HP-UX. The alternatives are to use a separate attributue in the directory for an HP-UX account name, or to assure that all uid names are 8 characters or less (sorry.)
Aside from the other recommended readings, start by looking at http://docs.hp.com/hpux/internet. Look for LDAP-UX Integration.
Bob
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-01-2003 09:35 AM
05-01-2003 09:35 AM
Re: new to LDAP
1. Yes. However LDAP-UX does not directly support mail aliases. Instead you can configure sendmail to look directly in an LDAP directory.
2. Information specific to Unix is stored in the LDAP directory under a unix schema (RFC 2307.) The LDAP protocol is used to retrive and present this information to the HP-UX OS and applications through the name service APIs like getpwnam(). A name service switch /etc/nsswitch.conf configures which backends, like NIS, files or LDAP should be used.
3. Several ways: First, only users with unix attributes (unix user id numbers, etc..) are visible to HP-UX. In addition, you can configure pam_ldap search filters to control which users may login. Or with netgroups (in ldap or nis) you can limit logins the more traditional NIS-way, using the pam_authz library (part of LDAP-UX.)
4. Login names greater than 8 characters don't work properly on HP-UX. The alternatives are to use a separate attributue in the directory for an HP-UX account name, or to assure that all uid names are 8 characters or less (sorry.)
Aside from the other recommended readings, start by looking at http://docs.hp.com/hpux/internet. Look for LDAP-UX Integration.
Bob
2. Information specific to Unix is stored in the LDAP directory under a unix schema (RFC 2307.) The LDAP protocol is used to retrive and present this information to the HP-UX OS and applications through the name service APIs like getpwnam(). A name service switch /etc/nsswitch.conf configures which backends, like NIS, files or LDAP should be used.
3. Several ways: First, only users with unix attributes (unix user id numbers, etc..) are visible to HP-UX. In addition, you can configure pam_ldap search filters to control which users may login. Or with netgroups (in ldap or nis) you can limit logins the more traditional NIS-way, using the pam_authz library (part of LDAP-UX.)
4. Login names greater than 8 characters don't work properly on HP-UX. The alternatives are to use a separate attributue in the directory for an HP-UX account name, or to assure that all uid names are 8 characters or less (sorry.)
Aside from the other recommended readings, start by looking at http://docs.hp.com/hpux/internet. Look for LDAP-UX Integration.
Bob
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
Company
Events and news
Customer resources
© Copyright 2025 Hewlett Packard Enterprise Development LP