System Administration Guide: Naming and Directory Services (DNS, NIS, and LDAP)

Using Proxy Credentials

ProcedureHow to Initialize a Client Using Proxy Credentials

Note –

Do not edit either of the client configuration files directly. Use ldapclient to create or modify the content of these files.

  1. Become superuser or assume an equivalent role.

    Roles contain authorizations and privileged commands. For more information about roles, see Chapter 9, Using Role-Based Access Control (Tasks), in System Administration Guide: Security Services.

  2. Run ldapclient (defining proxy values).

    # ldapclient init \
    -a proxyDN=cn=proxyagent,ou=profile,dc=west,dc=example,dc=com \
    -a \
    -a profileName=pit1 \
    -a proxyPassword=test1234
    System successfully configured

    The -a proxyDN and -a proxyPassword are required if the profile to be used is set up for proxy. As the credentials are not stored in the profile saved on the server, you must supply the information when you initialize the client. This method is more secure than the older method of storing the proxy credentials on the server.

    The proxy information is used to create /var/ldap/ldap_client_cred. The rest of the information is put in /var/ldap/ldap_client_file.