Novell Documentation: Nterprise Linux Services - LUM Configuration Parameters

LUM Configuration Parameters

The parameters that are used for configuring LUM are listed in the /etc/nam.conf file. The configuration file is stored in the UTF-8 format.

Table 2 contains the list of parameters present in /etc/nam.conf.

Table 2. LUM Configuration Parameters

Parameter	Description
preferred-server	Specifies the eDirectory LDAP server to be contacted. The value can be any of the following: host name, alias, DNS name or IP address. The default is a null string. The value is set when you configure LUM.
positive-time-to-live	Time in seconds for which an entry is kept in the cache, before it is deleted. Setting a larger value increases cache hit rates and reduces mean response time but increases problems of cache coherence. This value should be set based on the expected frequency with which the user, group, Linux config and Linux workstation objects are expected to be modified in the eDirectory tree. The value can range from 1 to 2147483647. The default value is 600 seconds..
base-name	Specifies the context in eDirectory where LUM is installed. The default value is a null string. The value is set when you configure LUM.
num-threads	Specifies the number of worker threads in the cache daemon. The value can range from 1 to 25. The default is 5.
schema	Indicates whether the eDirectory 8.1 or earlier or the RFC 2307 schema is supported. The default schema is rfc2307.
enable-persistent-cache	Specifies whether persistent cache is to be maintained on the local workstation to store user and group profiles. Values can be "yes" or "no." The default value is "yes."
user-hash-size	Specifies the hash size for persistent cache to store user entries. The value should be a prime number greater than or equal to 1/4th of the number of users entries. The value can range from 1 to 9973. Tthe default is 211.
group-hash-size	Specifies the hash size for persistent cache to store group entries. The value should be a prime number greater than or equal to 1/4th of the number of group entries. The value can range from 1 to 9973. The default is 211.
persistent-cache-entries-aging-interval	Specifies the interval, in seconds, after which the user and group entries will be deleted from the persistent cache. The value can range from 1 to 2147483647 seconds. The default is 7200.
persistent-cache-refresh-period	Specifies how frequently user and group entries stored in the persistenr cache are to be refreshed from eDirectory. A larger value results in less network traffic and less load on the server, but the cache might reflect stale information if the eDirectory database is modified. The value can range from 1 to 2147483647 seconds. The default period is 28800 seconds (8 hours).
persistent-cache-refresh-flag	Specifies whether all user and group entries or only those used in the current boot session are to be refreshed. This can take the values "all" or "accessed." The default is "all."
create-home	Creates user home directories. Values can be "yes" or "no." The default value is "no."
user-context	Specifies the user context to which Linux User objects are to be migrated. The default value is ou = Linux-users,<base_name>. Not used in LUM 2.1.
group-context	Specifies the group context to which Linux Group objects are to be migrated. The default value is ou = Linux-groups,<base_name>. Not used in LUM 2.1
type-of-authentication	Specifies the type of authentication, either simple (non-SSL) or SSL-based, that is to be followed. Values can be 1 (simple authentication) or 2 (SSL-based authentication). The default value is 1.
certificate-file-type	Specifies the certificate file format. Two values are possible: "der" and "base64." The default value is "der." NOTE: The certificate file for SSL authentication is /var/nam/.preferred_server-name.filetype, where preferred_server-name.filetype is the certificate file for the preferred server. If this file is deleted or becomes corrupted, it can be exported using namconfig -k.
ldap-ssl-port	Specifies the LDAP SSL port. The default is 636.
ldap-port	Specifies the LDAP connection port. The default is 389.
adminFDN	Specifies the LDAP-server admininstrator's name. The default value is a null string.
user-login-context	Specifies the login context of the LUM shell. The default value is a null string.
certificate-file-path	Specifies the path to the certificate file that certifies the SSL connection to the LDAP server. The default location is /var/nam/.
replica-server-list	Specifies a comma-separated list of names of replica servers.The default value is a null string.
support-alias-name	Specifies whether to support alias objects (users/groups) in eDirectory. Values can be yes or no. The default value is no.
support-outside-base-name	Specifies whether to support objects (users/groups) outside the domain to which NAM is configured. Values can be yes or no. The default value is no. If objects (users/groups) with the same name are present in the local domain, then preference is given to the local domain objects.