Index Index for
Section 4
Index Alphabetical
listing for L
Bottom of page Bottom of
page		 

ldapcd.conf(4)


NAME

  ldapcd.conf - Configuration file for the single sign-on daemon.


SYNOPSIS

  # comment_string
  parameter: integer
  identifier: string
  identifier: "quoted_string,quoted_string,..."


DESCRIPTION

  The ldapcd.conf file stores the current configuration of the Windows 2000
  Single Sign-on daemon (SSO).	The information stored in the file is
  specified when you configure Windows 2000 Single Sign-on and is not
  normally changed.

  The ldapcd.conf file also contains the default operating parameters for the
  daemon which you can tune for performance.  You might need to tune
  performance if users wait a long period of time for the UNIX server system
  to respond.

  To tune the Windows 2000 SSO software, use a text editor to modify the
  values of the caching parameters as follows:

  connections
  The number of open connections that the caching daemon makes to the active
  directory.  Increasing the value of this entry opens more connections to
  the active directory, however this consumes more file descriptors and
  increases the load on the active directory. Typically, 4 connections are
  adequate for a workstation and 15 connections are adequate for a server.


  Default: 4 connections

  pw_cachesize
  The maximum number of user entries to store in cache.	 Increase or decrease
  this value as the maximum number of users increases or decreases.


  Default: 500 entries

  pw_expirecache
  The maximum number of seconds to cache a user entry.	Increasing this value
  increases performance because a user's entry is readily available in the
  cache. If you delete a recently used user account, its entry remains in the
  cache for the amount of time specified by this parameter.


  Default: 900 seconds.

  gr_cachesize
  The maximum number of group IDs to cache. Increasing this value increases
  performance because group IDs are readily available in the cache.


  Default: 100 group IDs

  gr_expirecache
  The maximum number of seconds to cache group IDs.


  Default: 900 seconds

  Using a Revised Configuration

  If you change the value of a cache parameter in the /etc/ldapcd.conf file,
  you must enter the following command to read the new configuration and
  restart the daemon:

       # /sbin/init.d/ldapw2k restart


EXAMPLES

  The following example shows a typical configuration file:

       #
       connections: 4
       pw_cachesize: 500
       pw_expirecache: 900
       gr_cachesize: 100
       gr_expirecache: 900

       usesasl: 1

       directory: server1
       searchbase: "cn=users,DC=SSO,DC=TWOTEN,DC=COM"
       machine_acctname: emera.ggg.bbb.com
       machine_dn: "cn=emera,cn=computers,DC=SSO,DC=TWOTEN,DC=COM"


FILES

  /etc/ldapcd.conf
	     Location of the file.


RELATED INFORMATION

  Commands: ldapcd(8), lw2ksetup(8)

  Windows 2000 Single Sign-On Installation and Administration Guide.

Index Index for
Section 4
Index Alphabetical
listing for L
Top of page Top of
page