sectoldif.cfg Configuration File
Purpose
Defines the names to use for defined data types when generating directory information tree (DIT) data for LDAP.
Description
The sectoldif.cfg configuration file is used by the mksecldap, sectoldif, nistoldif, and rbactoldif commands when generating output to export to LDAP. This
file allows a system administrator to customize the naming used for
various data branches that will be created in LDAP. Default names
are provided and may be used unless customization is desired. Each
entry in the file consist of the following fields:
Data_Type LDAP_Attribute_Name LDAP_Object_Class LDAP_Value| Item | Description |
|---|---|
| Data_Type | Specifies the data type. Values are USER, GROUP, ID, HOST, SERVICE, PROTOCOL, NETWORK, NETGROUP, RPC, AUTHORIZATION, ROLE, PRIVCMD, PRIVDEV and PRIVFILE. |
| LDAP_Attribute_Name | Specifies the LDAP attribute name. |
| LDAP_Object_Class | Specifies the LDAP object class associated with LDAP_Attribute_Name. |
| LDAP_Value | Specifies the LDAP attribute value. |
The Data_Type field must be one of the recognized types. The remaining fields in an entry are configurable by the system administrator. System administrator must ensure that the LDAP_Object_Class field is appropriate for the supplied LDAP_Attribute_Name as the commands do not verify the combination.
Examples
- The following modifications to sectoldif.cfg will cause users to be exported to ou=Employees,o=ibm and groups to ou=Departments,o=ibm when -d o=ibm is specified for the sectoldif command:
USER ou organizationalUnit Employees GROUP ou organizationalUnit Departments - The following modifications to sectoldif.cfg will cause an AIX® compliant
DIT and data to be created when sectoldif -d cn=aixsecdb,cn=aixdata
-S aix is invoked:
USER ou organizationalUnit aixuser GROUP ou organizationalUnit aixgroup ID ou organizationalUnit system