[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: configuring Solaris 8 pre-installed LDAP as NIS replacement?

To: Donald Hudson <donh@ejasent.com>
Subject: Re: configuring Solaris 8 pre-installed LDAP as NIS replacement?
From: Gary Algier <gaa@ulticom.com>
Date: Tue, 12 Sep 2000 16:18:09 -0400
Cc: Open Ldap General <OpenLDAP-general@OpenLDAP.org>
References: <39BE81DB.663189A8@ejasent.com>

Try installing the "Solaris Extensions".  This includes the tools
to manage a combined NIS and LDAP environment.  Included in it
are:
	1) The schema additions necessary to implement the
	   LDAP object classes.
	2) Replacement yp services so you can support older NIS
	   systems from the LDAP server.
	3) Documentation explaining the data structures and schemas.

Warning:
	They describe people as in:
		dn: uid=gaa, ou=people, dc=ulticom, dc=com
	However, their mapping files will create the people as in:
		dn: cn=Gary Algier, ou=people, dc=ulticom, dc=com
	which conflicts with the "standard" used by the rest
	of DS.  This especially becomes important if you want to
	use the Directory Gateway (their web-based tool for editting).

If you decide to use these tools, let me know and I will email a copy
of our mapping file to you.

Donald Hudson wrote:
> 
> Has anyone successfully pulled together the information necessary to set
> up a directory to work as a NIS replacement for Solaris 8 clients using
> the "pre-installed" ldap support?  Solaris 8 appears to come
> pre-installed with the necessary modules (nss_ldap, pam_ldap) to use
> LDAP as a replacement for NIS, but documentation for setting it up seems
> to be almost non-existent!
> 
> To start with, I've run into schema isssues.   Their client
> configuration utility "ldapclient", which is supposed to be the way to
> quickly configure a client for LDAP replacement of NIS, looks for a
> "nisDomainObject", which I was unable to find in the current set of
> nis/rfc2307 defs.  I did eventually locate a copy of Luke's 2307bis
> draft  with the additional defs (though that was difficult, as it
> appears to have expired and been dropped from the IETF site), so I was
> able to add the missing classes and attributes by hand.
> 
> If I run their "ldap_gen_profile", which is supposed to create a LDIF
> file that can used to set up an LDAP entry that client machines can then
> use to when being configured for LDAP support, I see another set of
> objects and atttributes ( SolarisNamingProfile,  SolarisLDAPServers,
> SolarisSearchBaseDN, etc.)  that also don't appear to be in the schemas
> known to either the OpenLDAP server or the Netscape Directory Server.
> Anyone know where I can find the Solaris schema?
> 
> Also, one side note about schema conflicts that I noticed when searching
> through the schemas.  RFC2307(bis) defines "nisMap" as .2.9, and appears
> to skip .2.13 in the list of class definitions.  Netscape's server
> appears to define .2.9 as "automount" (noting that it is deprecated),
> and defines .2.13 as "nisMap".
> 
> Anyhow, if anyone out there has been through this same headache of
> trying to set up a Solaris 8 ldap client with the pre-installed software
> and can post a few details on how to do it, I'm sure it will be
> appreciated by more than just me.
> 
> Donald Hudson
> donh@ejasent.com

-- 
Gary Algier, WB2FWZ       gary.algier@ulticom.com           +1 856 787 2758
Ulticom Inc., 1020 Briggs Rd, Mt. Laurel, NJ 08054      Fax:+1 856 866 2033

            This space intentionally left blank by the censors.

References:
- configuring Solaris 8 pre-installed LDAP as NIS replacement?
  - From: Donald Hudson <donh@ejasent.com>

Prev by Date: Re: configuring Solaris 8 pre-installed LDAP as NIS replacement?
Next by Date: Re: schema howto
Index(es):
- Chronological
- Thread