restart-secldapclntd Command

Purpose

The restart-secldapclntd script is used to stop the currently running secldapclntd daemon process and then restart it.

Syntax

/usr/sbin/restart-secldapclntd [ -C CacheSize ] [ -p NumOfThread ] [ -t CacheTimeOut ] [ -T HeartBeatIntv ] [ -o ldapTimeOut ]

Description

The restart-secldapclntd script stops the secldapclntd daemon if it is running, and then restarts it. If the secldapclntd daemon is not running, it simply starts it.

Flags

By default, the secldapclntd daemon reads the configuration information specified in the /etc/security/ldap/ldap.cfg file at startup. If the following options are given in command line when starting secldapclntd process, the options from the command line will overwrite the values in the /etc/security/ldap/ldap.cfg file.

Item Description
-C CacheSize Sets the maximum cache entries used by the secldapclntd daemon to CacheSize number of entries. Valid range is 100-10,000 entries for user cache. The default is 1000. The group cache entries will be 10% of the user cache entries.
-o ldapTimeOut Timeout period in seconds for LDAP client requests to the server. This value determines how long the client will wait for a response from the LDAP server. Valid range is 0 - 3600 (1 hour). Default is 60 seconds. Set this value to 0 to disable the timeout and force the client to wait indefinitely.
-p NumOfThread Sets the number of thread used by the secldapclntd daemon to NumOfThread threads. Valid range is 1-1000. The default is 10.
-t CacheTimeout Sets the cache to expire in CacheTimeout seconds. Valid range is 60- 3600 seconds. The default is 300 seconds.
-T HeartBeatIntv Sets the time interval of heartbeat between this client and the LDAP server. Valid values are 60-3,600 seconds. Default is 300.

Security

A user with the aix.security.ldap authorization is authorized to use this command.

Examples

  1. To restart the secldapclntd daemon, type:
    /usr/sbin/restart-secldapclntd
  2. To restart the secldapclntd with using 30 threads and cache timeout value of 500 seconds, type:
    /usr/sbin/restart-secldapclntd -p 30 -t 500

Files

Item Description
/etc/security/ldap/ldap.cfg Contains information needed by the secldapclntd daemon to connect to the server.