Configuration Parameters

Changing Configuration Parameter Values

You can change configuration parameter values by editing the /opt/ldapux/ypldapd/etc/ypldapd.conf file. Each entry in the file consists of a key word, followed by white space, followed by the value for that parameter. Any line starting with a pound sign or hash symbol (#) is treated as a comment and ignored.

NIS Domain to Serve

Specifies the NIS domain that the NIS/LDAP Gateway serves. See domainname(1) for more information.

Required.

LDAP Server Name

Specifies the host name of your LDAP server. The host’s IP address must be resolvable without consulting NIS (through NIS or /etc/hosts) or specified in dotted decimal notation, to avoid reentrancy problems. It is suggested you use a DNS name (and configure /etc/nsswitch.conf to perform host lookups in DNS before NIS) or an IP address.

Required.

LDAP Protocol Version

Specifies the version of the LDAP protocol your directory server is using.

Optional.

Search Base DN

Specifies the Distinguished Name in your directory where the NIS/LDAP Gateway should begin all searches.

Required.

Naming Context Mappings

Specifies the file containing name mappings from NIS names to distinguished names in your directory. The default mappings are in the file /opt/ldapux/ypldapd/etc/namingcontexts.conf. The default mappings will work in most cases. Edit this file if you put your NIS data in other than the default places. See also “Naming Context”.

Optional.

Bind DN

Specifies the distinguished name of the proxy user the NIS/LDAP Gateway uses to bind to the directory.

Optional.

Bind DN Password

Specifies the credentials or password of the proxy user the NIS/LDAP Gateway uses to bind to the directory. See “Bind DN” above.

Optional, but required if using a proxy user.

	NOTE: You should protect this password in your configuration file by making the file ypldapd.conf only accessible by root with a command like the following: chmod 600 ypldapd.conf

LDAP Port

Specifies the TCP port number for the NIS/LDAP Gateway to connect to your LDAP directory server.

Optional.

LDAP Search Scope

Specifies how deep the NIS/LDAP Gateway should go when searching your directory.

Optional.

LDAP Alias Dereference Policy

Specifies how the NIS/LDAP Gateway should handle aliases when searching your LDAP directory server.

Optional.

	NOTE: Netscape Directory Server for HP-UX implements referrals instead of alias dereferencing. See the Netscape Directory Server Deployment Guide for details on referrals.

Fall Through to NIS

Specifies whether the NIS/LDAP Gateway should search an NIS domain if the requested information is not found in the LDAP directory.

Optional.

Parent NIS Domain

Specifies the NIS domain to fall through to if the needed information is not found in the directory. Maps not supported by the NIS/LDAP Gateway and maps already fulfilled by the directory will be supplemented by binding to the specified NIS parentdomain.

Optional.

Fall Through to DNS

Specifies whether the NIS/LDAP Gateway should search a DNS server if the requested host information is not found in the LDAP directory.

Optional.

Search Time Limit

Specifies how long, in seconds, the NIS/LDAP Gateway should search the directory before aborting the search operation.

Optional.

Enable or Disable Caching

Specifies whether the NIS/LDAP Gateway should cache information from the directory. See “Caching” for more information.

Optional.

Cache Lifetime

Specifies how often, in minutes, the NIS/LDAP Gateway should refresh the preloaded maps in the cache and flush all other maps from the cache. See “Setting the Frequency of Cache Refreshing” for more information.

Optional.

Preload Maps into the Cache

Specifies what maps, if any, should be preloaded into the cache. Caching must be enabled with the caching parameter as described in “Enable or Disable Caching”. See also “Caching”.

Optional.

Maximum Number of Processes

Specifies the maximum number of processes to fork for enumeration requests. See “Minimizing Enumeration Requests” for more information.

Optional.

Use Caching for Enumeration Requests

Specifies whether enumeration requests use caching. Filling the cache on an enumeration request can tie up the NIS/LDAP Gateway daemon for a long time, delaying service of other NIS requests, causing clients to fail or rebind to another server.

	NOTE: You should preload maps instead of caching enumeration requests. See “Preload Maps into the Cache”. See also “Minimizing Enumeration Requests” for more information.

Optional.

NIS Master Host Name

Specifies the NIS domain the ypwhich command should return. By default, ypwhich returns the name of the local host.

Optional.

PID File

Specifies the file in which to write the process identifier (PID) for the NIS/LDAP Gateway daemon, ypldapd. If you don’t specify a full path, the file is placed in the root directory, /.

Optional.