Defining Local Client Attributes

Language:

Chapter 3, Planning Requirements for LDAP Naming Services described the attributes of the LDAP client profile that define to configure the LDAP server. The profile with those attributes are set up on the server by using the idsconfig command.

Other client attributes can be set up locally by using the ldapclient command. The following table lists these attributes.

Table 5-1 Local LDAP Client Attributes

Attribute	Description
`adminDN`	Specifies the administrator entry's distinguished name for the admin credential. If the value of the `enableShadowUpdate` switch is `true` on the client system and `credentialLevel` has a value other than `self`, then `adminDN` must be specified.
`adminPassword`	Specifies the administrator entry's password for the admin credential. If the value of the `enableShadowUpdate` switch is `true` on the client system and `credentialLevel` has a value other than `self`, then `adminPassword` must be defined.
`domainName`	Specifies the client's domain name (which becomes the default domain for the client system). This attribute has no default value and must be specified.
`proxyDN`	The proxy's distinguished name. If the client system is configured with `credentialLevel` set to `proxy`, the `proxyDN` must be specified.
`proxyPassword`	The proxy's password. If the client system is configured with `credentialLevel` set to proxy, `proxyPassword` must be defined.
`certificatePath`	The directory on the local file system containing the certificate databases. If a client system is configured with `authenticationMethod` or `serviceAuthenticationMethod` using TLS, then this attribute is used. The default value is `/var/ldap`.

Note - If the BaseDN in an SSD contains a trailing comma, it is treated as a relative value of the defaultSearchBase. The values of the defaultSearchBase are appended to the BaseDN before a search is performed.