start-secldapclntd Command
Purpose
The start-secldapclntd script is used to start the secldapclntd LDAP client daemon.
Syntax
/usr/sbin/start-secldapclntd [ -C CacheSize ] [ -p NumOfThread ] [ -t CacheTimeOut ] [ -T HeartBeatIntv ] [ -o ldapTimeOut ]
Description
The start-secldapclntd script starts the secldapclntd daemon if it is not running. It does not do anything if the secldapclntd daemon is already running. The script also cleans the portmapper registration (if there is any) from previous secldapclntd daemon process before it starts the secldapclntd daemon. This prevents the startup failure of the new daemon process from portmap-per registration failure.
Flags
By default, the secldapclntd daemon reads the configuration information specified in the /etc/security/ldap/ldap.cfg file at startup. If the following options are given in command line when starting secldapclntd process, the options from the command line will overwrite the values in the /etc/security/ldap/ldap.cfg file.
| Item | Description |
|---|---|
| -C CacheSize | Sets the maximum cache entries used by the secldapclntd daemon to CacheSize number of entries. The valid range is 100-65536 entries for user cache entry. The default value is 1000. The valid range is 10-65536 for group cache entry. The default value is 100. If you set the user cache entry in the start-secldapclntd command by using the -C option, the group cache entry is set to 10% of the user cache entry. |
| -o ldapTimeOut | Timeout period in seconds for LDAP client requests to the server. This value determines how long the client will wait for a response from the LDAP server. Valid range is 0 - 3600 (1 hour). Default is 60 seconds. Set this value to 0 to disable the timeout and force the client to wait indefinitely. |
| -p NumOfThread | Sets the number of thread used by the secldapclntd daemon to NumOfThread threads. Valid range is 1-256. The default is 10. |
| -t CacheTimeout | Sets the cache to expire in CacheTimeout seconds. Valid range is 60- 3600 seconds. The default is 300 seconds. |
| -T HeartBeatIntv | Sets the time interval of heartbeat between this client and the LDAP server. Valid values are 60-3,600 seconds. Default is 300. |
Security
A user with the aix.security.ldap authorization is authorized to use this command.
Examples
- To start the secldapclntd daemon, type:
/usr/sbin/start-secldapclntd - To start the secldapclntd with using 20 threads and cache
timeout value of 600 seconds, type:
It is recommended that you specify these values in the /etc/security/ldap/ldap.cfg file, so that these values will be used each time you start the secldapclntd process./usr/sbin/start-secldapclntd -p 20 -t 600
Files
| Item | Description |
|---|---|
| /usr/sbin/start-secldapclntd | Used to start the secldapclntd LDAP client daemon. |