2-40 SPARC Enterprise Mx000 Servers XSCF User’s Guide • August 2009
TABLE 2-6 LDAP Administration
Item Description Shell command Remarks
Display the
use of LDAP
Displays the use of an LDAP server for
authentication and privilege lookup.
showlookup
Enable/
disable the
use of LDAP
Enables or disables the use of an LDAP server
for authentication and privilege lookup.
setlookup If this specifies that
authentication data and user
privilege data be placed
together on an LDAP server,
the system first searches the
local area, and it searches the
LDAP server only if the
target data is not found
locally.
Display client Displays LDAP client setting information. showldap
Bind ID Bind an ID for a connection to (bind:
authenticate) an LDAP server.
setldap Bind ID maximum length is
128 characters.
password Sets a password used to bind an LDAP server. setldap A password can consist of 8
to 16 characters.
Search base Sets an LDAP tree search base (baseDN). setldap • If this item is omitted, the
command searches the tree,
beginning from the top.
• Search base maximum
length is 128 characters.
Certificate
chain
Imports the certificate chain of an LDAP server.
Import a certificate chain as follows:
• Import a secure copy (scp) from a remote file.
setldap • The certificate chain must
be in PEM format. (Note 1)
• A password may need to
be entered to import an scp
from a remote file.
LDAP
server/port
Specify the IP addresses and port numbers of
the primary and secondary LDAP servers.
Specify IP addresses or host names for the
addresses.
(e.g. ldap://foobar.east,
ldaps://10.8.31.14:636 )
setldap The default LDAP port
number is 636 for ldaps, 389
for ldap when the port
number is not specified.
Timeout Sets the maximum time (seconds) allowed for
an LDAP search.
setldap
LDAP test Tests the connection to an LDAP server. setldap
To Next Page
Loading...
Need help?
General
