System Administration Guide: Naming and Directory Services (DNS, NIS, and LDAP)

Populating the Directory Server With Additional Profiles

Use ldapclient with the genprofile option to create an LDIF representation of a configuration profile, based on the attributes specified. The profile you create can then be loaded into an LDAP server to be used as the client profile. The client profile can be downloaded by the client by using ldapclient init.

Refer to ldapclient(1M) for information about using ldapclient genprofile.

ProcedureHow to Populate the Directory Server With Additional Profiles Using ldapclient

  1. Become superuser or assume an equivalent role.

    Roles contain authorizations and privileged commands. For more information about roles, see Chapter 9, Using Role-Based Access Control (Tasks), in System Administration Guide: Security Services.

  2. Use ldapclient with the genprofile command.


    # ldapclient genprofile \
    -a profileName=myprofile \
    -a defaultSearchBase=dc=west,dc=example,dc=com \
    -a "defaultServerList=192.168.0.1 192.168.0.2:386" \
    

    > myprofile.ldif

  3. Upload the new profile to the server.


    # ldapadd -h 192.168.0.1 -D “cn=directory manager” -f myprofile.ldif