Cisco Headend Digital Broadband Delivery System
Chapter 3 Configure LDAP and Sudo Support
12
4017610 Rev A
proxyPassword = secret
LDAP domain name (domainName) = example.com
Before You Begin
Before you begin, gather the following information from the site administrator:
LDAP server hostname and IP address
LDAP port number if not using the default of 389
Existing profile name (profileName)
Proxy distinguished name (proxyDN)
Proxy password (proxyPassword)
Enabling the LDAP Client with Simple Authentication
Follow these instructions to configure the LDAP client with simple authentication
for LDAP support.
for LDAP support.
CAUTION:
Only appropriately qualified and skilled personnel should attempt to install,
operate, maintain, and service this product. Incorrectly configuring the system
can lock all users out of the system. Correcting this requires a lengthy process
of booting from the OS media and undoing the changes.
Only appropriately qualified and skilled personnel should attempt to install,
operate, maintain, and service this product. Incorrectly configuring the system
can lock all users out of the system. Correcting this requires a lengthy process
of booting from the OS media and undoing the changes.
1 If you have not already done so, open an xterm window on the LDAP client and
log in as root user.
2 Use a text editor such as vi to open /etc/hosts and add the following information
to it:
LDAP server hostname
LDAP server IP address
3 Type cp -p nsswitch.conf nsswitch.conf.preLDAP and press Enter. The system
makes a copy of nsswitch.conf and names the copy nsswitch.conf.preLDAP.
4 Initialize LDAP client by typing the following and then pressing Enter.
Note: This command uses the line continuation character (\) to indicate that the
command continues on the subsequent line.
command continues on the subsequent line.
LDAP_Client#
ldapclient -vv init \
-a profileName=simple_profile \
-a proxyDN=cn=readonly,dc=example,dc=com \
-a proxyPassword=secret \
-a domainName=example.com \
-a "defaultServerList=ldapsrvr"