ypldapd(8)ypldapd(8)NAMEypldapd - NIS to LDAP gateway server
SYNOPSIS
configfile]
DESCRIPTION
is a server process that provides information to any process that makes
calls to the NIS client side routines, including the standard libc
calls, such as and so on, as well as the special tools and provided as
part of the standard NIS distribution.
emulates the equivalent process by providing an RPC call-compatible
interface. Rather than consulting map files as does, however, draws
its data from an LDAP database.
Communication to and from is by means of RPC calls. Lookup functions
are described in ypclnt(3N), and are supplied as C-callable functions
in
Posting a SIGUSR2, with caching enabled, will force to flush its cache.
Options
Specify a configuration file to use.
The default is
Enable debugging.
will not detach in this circumstance. Debug messages
are logged to syslog(3).
Show version of the software.
This will report the release number. The internal build
number is logged to syslog(3) at startup.
CONFIGURATION
expects to find its configuration in the file unless an alternate con‐
figuration file is specified on the command line.
Each line in the configuration file consists of a key, followed by
whitespace, followed by a value. Any line starting with the hash sym‐
bol is treated as a comment and is ignored.
Each configuration key and its meaning are detailed below.
The NIS domain which
should serve.
The host which is running the LDAP server to be consulted for
directory
service lookups. Its IP address must be resolvable with‐
out consulting NIS (ie. through or DNS) or specified in
dotted decimal notation to avoid reentrancy problems.
The TCP port to use to connect to the LDAP server. Default is
389.
The LDAP protocol version to use, version 2 or version 3.
The distinguished name (DN) to use as a base for queries,
typically that of your organization.
The distinguished name (DN) of the proxy
user the NIS/LDAP Gateway uses
to bind to the LDAP server. Optional. Default is anony‐
mous access.
How to handle aliases:
means never dereference; this is the default.
means dereference when finding.
means dereference when searching.
means always dereference.
Specifies whether to search an NIS domain if the requested
information is
not found in the LDAP directory. See also
Not supported in this release.
Specifies whether to search a DNS server if the requested
host information is not found in the LDAP directory.
The hostname to return to
Default is the local host.
Specifies the search scope.
means search the specified base DN and all of its descen‐
dants.
This is the default.
means search only the immediate children of specified
base DN.
means search only the specified base DN, which is typi‐
cally too restrictive.
The credential or password to bind with if not binding as an
anonymous user.
Optional, but typically required in addition to
The maximum number of children to
for operations. If not specified, or equal to zero, will
perform operations in series with other RPC requests.
Specifies whether the NIS/LDAP Gateway should cache information
from the
directory.
Specifies whether or not the cache will be populated and con‐
sulted for
requests. The default is off.
A space separated list of dynamic libraries to load.
For each element XXX in the list, the file is loaded. If
the library cannot be found, then is searched for Each
library must contain an array of objects of type named
The interval, in minutes, in which to send the ypldapd daemon
signal,
to flush all caches. Note: SIGUSR2 will force daemon to
discard all caches. SIGUSR1 will log cache statistics
and states information via A value of zero means never
refresh the cache.
Specifies the parent NIS domain.
The search will fall through to the parent NIS domain if
it fails in the domain specified by the ypdomain parame‐
ter. See also
Maximum time limit, in seconds, for LDAP
searches.
A value of zero means no limit. Default is no time
limit.
The file where
writes its process ID (PID). The default is
Not supported in this release.
Enable or disable shadow passwords. You must set this
value to off or you will not be able to log in.
Specifies the file containing name mappings from NIS names to
distinguished names in the directory. Default is
Specifies the file containing additional qualifiers to AND with
the default
search filter. Default is
Specifies maps you want to be preloaded at initialization time
and
after the cache is flushed. The map name can be a nick‐
name or full name. If a nickname is used, all related
maps will be preloaded. For example, if is specified,
and will be preloaded.
Specifies how often, in minutes,
should discard its internal client/server connection
state. You can adjust this value to improve performance.
The default value is 5 (minutes).
Specifies whether NIS/LDAP Gateway should use a SSL connection
to
communicate with the LDAP server.
Specifies the path to the database containing the certificate of
the certificate authority (CA) that issued the server's
certificate. It is expected that database files are
named cert8.db and key3.db used by the Mozilla and Net‐
scape clients.x.
LIMITATIONS
You cannot run and on the same host.
DOCUMENTATION
Available on
·
·
FILES
Directory for shared objects.
The configuration file.
The process id.
VERSION
B.04.10
AUTHOR
was developed by the Hewlett-Packard Company.
SEE ALSOypserv(1M), ypbind(1M), ypinit(1M), ldapux(5).
ypldapd(8)