Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: LDAP users with RBAC Roles
Operating Systems Solaris LDAP users with RBAC Roles Post 302390457 by jlliagre on Thursday 28th of January 2010 04:12:50 AM
Old 01-28-2010
Your solution is actually a workaround. It isn't taking advantage of what LDAP as a naming service is designed to, i.e. central management and unicity of the database.
 

9 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

Equivalent of ADMCHG for LDAP Users

All newly created Aix5 users are forced to change password first time when they log in. We know removing the ADMCHG flag in passwd file will not prompt the user for change password. But we are trying to figure out the similar solution if the user is created as a LDAP user ?. Any help? Thanks... (0 Replies)
Discussion started by: vipas
0 Replies

2. UNIX for Advanced & Expert Users

link LDAP-Users

hi, is it possible to link users on a LDAP-Server from one container to another? we have two trees, one for AIX and one for solaris-linux but we have a few users in both trees, they should have the same password and a password change must affect both entries we use IBM Directory Server... (3 Replies)
Discussion started by: funksen
3 Replies

3. Linux

Monitor ldap users

Any way to find the ldap users currently logged into the clinets ? I am using Openldap with NFS for home directory mounts. (0 Replies)
Discussion started by: nitin09
0 Replies

4. AIX

Customize Roles - HMC

Hi All, i would like to know if it's possible to create a new custom role on HMC to manage only one LPAR and few activity on it (START,STOP,CONSOLE). It's possible create this custom role? If yes where i can read something about? Thanks in advance. Bye. Zio (1 Reply)
Discussion started by: Zio Bill
1 Replies

5. Linux

Help me with all users ldap

Need to find the ldap id's of all the users in my organizations... is there any command??? (0 Replies)
Discussion started by: Syed Imran
0 Replies

6. AIX

RBAC and LDAP users (AD)

Hello everyone, I am having trouble with something, and I can't find the right answer online. On our company, we are using LDAP Authentication with Active Directory (Windows 2008 Servers) to have a centralized management of AIX 7.1 users. So far so good, but now, we want to implement RBAC on... (7 Replies)
Discussion started by: Janpol
7 Replies

7. UNIX and Linux Applications

Oracle Database - How to check if user roles and system roles are separated?

I have these two table. How do I see if user roles and system roles are seperated? SQL> desc DBA_ROLES; Name Null? Type ----------------------------------------- -------- ---------------------------- ROLE NOT NULL... (1 Reply)
Discussion started by: alvinoo
1 Replies

8. Solaris

LDAP Client not connecting to LDAP server

I have very limited knowledge on LDAP configuration and have been trying fix one issue, but unsuccessful. The server, I am working on, is Solaris-10 zone. sudoers is configured on LDAP (its not on local server). I have access to login directly on server with root, but somehow sudo is not working... (9 Replies)
Discussion started by: solaris_1977
9 Replies

9. Solaris

How do you assign multiple roles in RBAC?

Oracle Solaris 10 9/10 s10s_u9wos_14a SPARC Hi, just starting with RBAC. I have managed to create a test user with assigned roles: Basic Actions Basic Solaris UserI also didroleadd -d /export/home/userrole -m userrolebut when I didrolemod -P "Basic Actions" userrole rolemod -P "Basic... (1 Reply)
Discussion started by: rino19ny
1 Replies

LEARN ABOUT MINIX

ldap_cachemgr

ldap_cachemgr(1M)					  System Administration Commands					 ldap_cachemgr(1M)

NAME

       ldap_cachemgr - LDAP daemon to manage client configuration for LDAP based Network Information Service lookups

SYNOPSIS

       /usr/lib/ldap/ldap_cachemgr [-l	log-file] [-g]

DESCRIPTION

       The ldap_cachemgr daemon is a process that provides an up-to-date configuration cache for LDAP naming services. It is started during multi-
       user boot.

       The ldap_cachemgr utility provides caching for all parameters as specified and used by the LDAP naming service clients.	The  ldap_cachemgr
       utility	uses  the  cache  files which are originally created by executing the ldapclient(1M) utility, as cold start files.  Updates to the
       cache files take place dynamically if profiles are used to configure the client. See the init option to ldapclient(1M).

       The ldap_cachemgr utility helps improve the performance of the clients that are using LDAP as the Naming service repository.  In order  for
       the  LDAP  naming  services to function	properly, the ldap_cachemgr daemon must be running. ldap_cachemgr also improves system security by
       making the configuration files readable by superuser only.

       The cache maintained by this daemon is shared by all the processes that access LDAP Naming information.	All processes  access  this  cache
       through	a  door call.  On startup, ldap_cachemgr initializes the cache from the cache files. See ldapclient(1M).  Thus, the cache survives
       machine reboots.

       The ldap_cachemgr daemon also acts as its own administration tool.  If an instance of ldap_cachemgr is already running, commands are passed
       transparently to the running version.

OPTIONS

       The following options are supported:

       -g		       Print current configuration and statistics to standard output. This is the only option executable without superuser
			       privileges.

       -l log-file	       Cause ldap_cachemgr to use a log file other than the default /var/ldap/cachemgr.log.

EXAMPLES

       Example 1: Stopping and Restarting the ldap_cachemgr Daemon

       The following example shows how to stop and to restart the ldap_cachemgr daemon.

       example# svcadm enable network/ldap/client
       example# svcadm disable network/ldap/client

       Example 2: Forcing ldap_cachemgr to Reread the /var/ldap/ldap_client_file and /var/ldap/ldap_client_cred Files

       The following example shows how to force ldap_cachemgr to reread the /var/ldap/ldap_client_file and /var/ldap/ldap_client_cred files

       example# pkill -HUP ldap_cachemgr

FILES

       /var/ldap/cachemgr.log	       Default log file.

       /var/ldap/ldap_client_file      Files containing the LDAP configuration of the client. These files are not to be modified  manually.  Their
       /var/ldap/ldap_client_cred      content is not guaranteed to be human readable.	Use ldapclient(1M) to update these files.

WARNINGS

       The  ldap_cachemgr  utility  is	included  in  the Solaris 9 release on an uncommitted  basis only. It is subject to change or removal in a
       future minor release.

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWnisu			   |
       +-----------------------------+-----------------------------+

SEE ALSO

       ldap(1), ldapadd(1), ldapdelete(1), ldaplist(1), ldapmodify(1), ldapmodrdn(1), ldapsearch(1),  pkill(1),  svcs(1),  idsconfig(1M),  ldapad-
       dent(1M), ldapclient(1M), suninstall(1M), svcadm(1M), signal.h(3HEAD), resolv.conf(4), attributes(5), smf(5)

NOTES

       The ldap_cachemgr service is managed by the service management facility, smf(5), under the service identifier:

       svc:/network/ldap/client

       Administrative  actions	on  this  service, such as enabling, disabling, or requesting restart, can be performed using svcadm(1M). The ser-
       vice's status can be queried using the svcs(1) command.

SunOS 5.10							    1 Aug 2004							 ldap_cachemgr(1M)
All times are GMT -4. The time now is 04:32 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy