12-08-2010
With those parameters, you are telling AIX to disregard the local user info on that user because it is an LDAP user. All the normal user commands you are used to do not show user information from your LDAP. If you were to change the parameters back or remove its entry from the /etc/security/user file, you could then see the user's attributes.
Do you have your box configured so it can query from an LDAP? I worked on setting mine up like that for quite a while and never got it to work 100%. Now I'm working on getting my users to authenticate via the Windows Server 2008 KDC (Kerberos) instead and keep all the user attributes on my local machine. I think this will be simpler. I haven't met anyone yet who actually does full authentication via an LDAP.
10 More Discussions You Might Find Interesting
1. UNIX for Advanced & Expert Users
Hi all,
I am using Sun Solaris 9 .In this system normal users unable to create files from the command line.I added these users in bin,adm and even root group i found them unable to create a file. (1 Reply)
Discussion started by: mallesh
1 Replies
2. Linux
HI,
How can I restrict normal user from doing 'poweroff' ?
Regards
JAGDISH (1 Reply)
Discussion started by: jagdish.machhi@
1 Replies
3. Shell Programming and Scripting
Got a cron to run everyday under my user. this cronjob runs a script from my /home/jack/scripts/run.sh
clear
#
# su to root and run a script, return with result
# su -
# passwd
# run /getfile.sh
# return with result
# the result will copy 2 files from /prod/app/logs/ and... (0 Replies)
Discussion started by: karthikn7974
0 Replies
4. Shell Programming and Scripting
Hi all,
I am trying to eject the cdrom from a livecd after certain stage...
Now assuming that it is possible to eject,please consider my issue!!!
The OS boots into a regular user by default...so i am unable to use the eject command to push out the drive...
However if i try pfexec eject it... (3 Replies)
Discussion started by: wrapster
3 Replies
5. Shell Programming and Scripting
Hi All
I have written one shell script for GPRS route add is given below named GPRSRouteSet.sh
URL="www.google.com"
VBURL="10.5.2.211"
echo "Setting route for $URL for GPRS"
URL_Address=`nslookup $URL|grep Address:|grep -v "#"|awk -F " " '{print $2}'|head -1`
echo "Executing ... (3 Replies)
Discussion started by: mnmonu
3 Replies
6. UNIX for Dummies Questions & Answers
Hi, I was wondering how to change the prompt for my ssh login. At the moment it is like
user>
while I'd like it to be as
user@host>
It is in the .bash_profile or .ssh ??? Thanks (2 Replies)
Discussion started by: pmasterkim
2 Replies
7. UNIX for Advanced & Expert Users
Besides doing some shell-script which loops through /etc/passwd, I was wondering if there was some command that would tell me, like an enhanced version of getent.
The Operating system is Solaris 10 (recent-ish revision) using Sun DS for LDAP. (5 Replies)
Discussion started by: ckmehta
5 Replies
8. Solaris
:confused: I installed latest version of java ( jre 1.6) on Solaris Machine ......when I run java -version as root, shows the latest version but when I run java -version as normal user, shows the old / previous version
What should I do to fix this ...should show the latest version... (3 Replies)
Discussion started by: frintocf
3 Replies
9. UNIX for Dummies Questions & Answers
Whenever i switch from root to another user, by doing su - user, it takes me to home directory of user. This is very annoying as i want to be in same dir to run different commands as root sometimes and sometimes as normal user.
How to fix this? (1 Reply)
Discussion started by: syncmaster
1 Replies
10. Shell Programming and Scripting
Hi,
I am trying to schedule a script that starts on reboot.I came across chkconfig utility to schedule scripts on reboot.
Problem here is can i how to use this chkconfig to schedule a script that runs a s normal user.
Or if there is any other function to schedule on reboot as normal user... (4 Replies)
Discussion started by: praveena kotapa
4 Replies
LEARN ABOUT POSIX
afp_ldap.conf
AFP_LDAP.CONF(5) Netatalk 2.2 AFP_LDAP.CONF(5)
NAME
afp_ldap.conf - Configuration file used by afpd(8) to configure a LDAP connection to an LDAP server. That is needed for ACL support in
order to be able to query LDAP for UUIDs.
DESCRIPTION
/etc/netatalk/afp_ldap.conf is the configuration file used by afpd to set up an LDAP connection to an LDAP server.
Any line not prefixed with # is interpreted.
Note
You can use afpldaptest(1) to syntactically check your config
The required parameters and their meanings are:
PARAMETER
ldap_server
Name or IP address of your LDAP Server
ldap_auth_method
Authentication method: none | simple | sasl
none
anonymous LDAP bind
simple
simple LDAP bind
sasl
SASL. Not yet supported !
ldap_auth_dn
Distinguished Name of the user for simple bind.
ldap_auth_pw
Distinguished Name of the user for simple bind.
ldap_userbase
DN of the user container in LDAP.
ldap_userscope
Search scope for user search: base | one | sub
ldap_groupbase
DN of the group container in LDAP.
ldap_groupscope
Search scope for user search: base | one | sub
ldap_uuuid_attr
Name of the LDAP attribute with the UUIDs.
Note: this is used both for users and groups.
ldap_name_attr
Name of the LDAP attribute with the users short name.
ldap_group_attr
Name of the LDAP attribute with the groups short name.
EXAMPLES
Example. afp_ldap.conf setup with simple bind
ldap_server = localhost
ldap_auth_method = simple
ldap_auth_dn = cn=admin,dc=domain,dc=org
ldap_auth_pw = notthisone
ldap_userbase = ou=users,dc=domain,dc=org
ldap_userscope = one
ldap_groupbase = ou=groups,dc=domain,dc=org
ldap_groupscope = one
ldap_uuid_attr = some_attribute
ldap_name_attr = cn
ldap_group_attr = cn
SEE ALSO
afpd(8), AppleVolumes.default(5), afpldaptest(1)
Netatalk 2.2 30 Mar 2011 AFP_LDAP.CONF(5)