ldapid.ldif.template File
Purpose
Sets the base ID entry in LDAP for new accounts.
Description
The /etc/security/ldap/ldapid.ldif.template file can be used to update the base ID entries of an LDAP server. With proper value settings to the attributes of the base ID entry, new LDAP accounts created using the mkuser and mkgroup commands will have numeric ID values greater or equal to the corresponding base value.
For example, if aixuserid value is set to 10000, new user accounts created in LDAP will have numeric ID values greater
than or equal to 10 000.
Because specifying IDs from the command line using the mkuser and mkgroup commands is not under control of the base ID entry, an administrator can create accounts of any ID value by specifying the ID from the command line.
The base ID entry contains the following four fields:
| Item | Description |
|---|---|
| aixadmingroupid | Base ID for admin groups. The default value is 1. |
| aixadminuserid | Base ID for admin users. The default value is 1. |
| aixgroupid | Base ID for groups. The default value is 200. |
| aixuserid | Base ID for users. The default value is 200. |
These values can be changed by using the ldapadd command and ldapmodify command with the /etc/security/ldap/ldapid.ldif.template file. The content of the file:
Example
dn: cn=aixbaseid,<ou=system,cn=aixdata>
objectClass: aixadmin
aixadmingroupid: 10000
aixadminuserid: 10000
aixgroupid: 10000
aixuserid: 10000Location
| Item | Description |
|---|---|
| /etc/security/ldap/ldapid.ldif.template | Contains the template base ID entry for LDAP servers. |