4.5 Importing Test Users

Create user entries in the replicated Directory Server user data instances for the following users:

• testuser1

• testuser2

These users will be used to verify that the policy agent is configured and working properly. Additionally, the Groups container will be used for the same purpose.

If you are using an existing user data store, create the appropriate users in it and move on to Chapter 6, Configuring OpenSSO Enterprise Realms for User Authentication.

Use the following procedure, To Import Test User Data into the Replicated Directory Server Instances, to create an LDIF file for the test users and import the file into ds–1. The test users will then be replicated to ds–2.

To Import Test User Data into the Replicated Directory Server Instances

1. Log in to the ds–1 host machine as a root user.

2. Create an LDIF file with the following entries.

   dn: ou=users,dc=company,dc=com
   objectclass: top
   objectclass: organizationalUnit
   ou: users
   description: Container for user entries
   
   dn: ou=Groups,dc=company,dc=com
   objectClass: top
   objectClass: organizationalUnit
   ou: Groups
   description: Container for group entries
   
   dn: uid=testuser1,ou=users,dc=company,dc=com
   uid: testuser1
   givenName: Test
   objectClass: top
   objectClass: person
   objectClass: organizationalPerson
   objectClass: inetadmin
   objectClass: inetorgperson
   objectClass: inetUser
   sn: User1
   cn: Test User1
   userPassword: password
   inetUserStatus: Active
   
   dn: uid=testuser2,ou=users,dc=company,dc=com
   uid: testuser2
   givenName: Test
   objectClass: top
   objectClass: person
   objectClass: organizationalPerson
   objectClass: inetorgperson
   objectClass: inetUser
   sn: User2
   cn: Test User2
   userPassword: password
   inetUserStatus: Active

3. Save the file as am-users.ldif in the /tmp directory.

4. Import the LDIF file into Directory Server 1 using ldapmodify.

   # cd /var/opt/mps/serverroot/dsrk6/bin # ./ldapmodify -h ds-1.example.com -p 1489 -D "cn=Directory Manager" -w dsmanager -a -f /tmp/am-users.ldif adding new entry ou=users,dc=company,dc=com adding new entry ou=Groups,dc=company,dc=com adding new entry uid=testuser1,ou=users,dc=company,dc=com adding new entry uid=testuser2,ou=users,dc=company,dc=com

5. Verify that the new users were imported using ldapsearch.

   # ./ldapsearch -h ds-1.example.com -b "dc=company,dc=com" -p 1489 -D "cn=Directory Manager" -w dsmanager "uid=test*" version: 1 dn: uid=testuser1,ou=users,dc=company,dc=com uid: testuser1 givenName: Test objectClass: top objectClass: person objectClass: organizationalPerson objectClass: inetadmin objectClass: inetorgperson objectClass: inetUser sn: User1 cn: Test User1 userPassword: {SSHA}H5LpB+QLZMoL9SiXzY/DokHKXRclELVy7w25AA== inetUserStatus: Active dn: uid=testuser2,ou=users,dc=company,dc=com uid: testuser2 givenName: Test objectClass: top objectClass: person objectClass: organizationalPerson objectClass: inetorgperson objectClass: inetUser sn: User2 cn: Test User2 userPassword: {SSHA}aLNFCQ1qw78KpJeloVZJAAa5QSAPf/9c2mxCQQ== inetUserStatus: Active

6. Log out of the ds–1 host machine.

7. (Optional) Verify that the entries were replicated to Directory Server 2 by logging in as a root user to the ds–2 host machine and using ldapsearch.

   # cd /var/opt/mps/serverroot/dsrk6/bin # ./ldapsearch -h ds-2.example.com -b "dc=company,dc=com" -p 1489 -D "cn=Directory Manager" -w dsmanager "" version: 1 dn: dc=company,dc=com objectClass: top objectClass: domain dc: company dn: ou=users,dc=company,dc=com objectClass: top objectClass: organizationalUnit ou: users description: Container for user entries dn: ou=Groups,dc=company,dc=com objectClass: top objectClass: organizationalUnit ou: Groups description: Container for group entries dn: uid=testuser1,ou=users,dc=company,dc=com uid: testuser1 givenName: Test objectClass: top objectClass: person objectClass: organizationalPerson objectClass: inetadmin objectClass: inetorgperson objectClass: inetUser sn: User1 cn: Test User1 inetUserStatus: Active userPassword: {SSHA}H5LpB+QLZMoL9SiXzY/DokHKXRclELVy7w25AA== dn: uid=testuser2,ou=users,dc=company,dc=com uid: testuser2 givenName: Test objectClass: top objectClass: person objectClass: organizationalPerson objectClass: inetorgperson objectClass: inetUser sn: User2 cn: Test User2 inetUserStatus: Active userPassword: {SSHA}aLNFCQ1qw78KpJeloVZJAAa5QSAPf/9c2mxCQQ==

8. Log out of the ds–2 host machine.