Sun Directory Server Enterprise Edition 7.0 Administration Guide
    
A
 
 access and error logs ( Index Term Link )
 
 access control
  anonymous access ( Index Term Link )
  bind rules ( Index Term Link )
   access at specific time or day ( Index Term Link )
  Boolean bind rules ( Index Term Link )
  from specific IP address ( Index Term Link ) ( Index Term Link )
  overview ( Index Term Link )
  permissions ( Index Term Link )
  target DN containing comma ( Index Term Link )
  targeting ( Index Term Link )
 
 account activation ( Index Term Link )
  account status ( Index Term Link )
  reactivating accounts ( Index Term Link )
  rendering accounts inactive ( Index Term Link )
 
 account lockout ( Index Term Link )
 
 ACI
  authmethod keyword ( Index Term Link )
  bind rules ( Index Term Link )
  examples of use ( Index Term Link )
  from specific IP address ( Index Term Link ) ( Index Term Link )
  groupdn keyword ( Index Term Link )
  inheritance ( Index Term Link ) ( Index Term Link )
  ip keyword ( Index Term Link ) ( Index Term Link )
  permissions ( Index Term Link )
  proxy rights example ( Index Term Link )
  roledn keyword ( Index Term Link )
  target DN containing comma ( Index Term Link )
  target overview ( Index Term Link )
  userattr and parent ( Index Term Link ) ( Index Term Link )
  userattr keyword ( Index Term Link )
  using macro ACIs ( Index Term Link )
 
 ACI storage repository ( Index Term Link )
 
 ACIs, with retro change log ( Index Term Link )
 
 administration overview ( Index Term Link )
 
 administrative alerts ( Index Term Link )
 
 aggregate data ( Index Term Link )
 
 alternate-search-base-dn, configure ( Index Term Link )
 
 anonymous access, example ( Index Term Link )
 
 anonymous clients user mapping ( Index Term Link )
 
 attribute types
  See also schema
  cosAttribute ( Index Term Link )
  cosIndirectSpecifier ( Index Term Link )
  cosPriority ( Index Term Link )
  cosSpecifier ( Index Term Link )
  cosTemplateDN ( Index Term Link )
  nsMatchingRule ( Index Term Link )
  nsRoleDN ( Index Term Link ) ( Index Term Link )
  nsRoleFilter ( Index Term Link )
  nsRoleScopeDN ( Index Term Link )
  ref ( Index Term Link )
 
 attribute uniqueness, see UID uniqueness plug-in ( Index Term Link )
 
 attributes
  adding a binary value from the command line ( Index Term Link )
  using referential integrity ( Index Term Link )
 
 authentication ( Index Term Link )
  access control and ( Index Term Link )
  anonymous ( Index Term Link )
  certificate-based ( Index Term Link )
  non-anonymous ( Index Term Link )
  SASL external bind ( Index Term Link )
 
 authentication methods, proxy authorization ( Index Term Link )
 
 authmethod keyword ( Index Term Link )
    
B
 
 back-end LDAP server ( Index Term Link )
  add certificate ( Index Term Link )
  export certificate ( Index Term Link )
 
 back-end LDAP servers
  number of connections ( Index Term Link )
  SSL ( Index Term Link )
 
 backing up data ( Index Term Link )
  dse.ldif server configuration file ( Index Term Link )
 
 bind rules
  access at specific time or day ( Index Term Link )
  access based on authentication method ( Index Term Link )
  anonymous access
   example ( Index Term Link )
  authmethod keyword ( Index Term Link )
  Boolean ( Index Term Link )
  group access ( Index Term Link )
  group access example ( Index Term Link )
  groupdn keyword ( Index Term Link )
  ip keyword ( Index Term Link ) ( Index Term Link )
  overview ( Index Term Link )
  role access ( Index Term Link )
  roledn keyword ( Index Term Link )
  timeofday keyword ( Index Term Link )
  user access example ( Index Term Link )
  userattr keyword ( Index Term Link )
 
 Boolean bind rules, overview ( Index Term Link )
 
 browsing index, see indexing ( Index Term Link )
    
C
 
 cascading replication, see replication ( Index Term Link )
 
 central log directories ( Index Term Link )
 
 certificate
  access database ( Index Term Link )
   disable prompt ( Index Term Link )
   prompt for a password ( Index Term Link )
  back up and restore ( Index Term Link )
 
 certificate-based authentication ( Index Term Link )
 
 certificate database, default path ( Index Term Link )
 
 certificates ( Index Term Link )
  CA-signed certificate ( Index Term Link )
   install ( Index Term Link )
   renew ( Index Term Link )
  list ( Index Term Link )
  non-default self-signed ( Index Term Link )
 
 client affinity ( Index Term Link )
  connection-based routing ( Index Term Link )
  replication delay ( Index Term Link )
  verify each write operation ( Index Term Link )
 
 client authentication ( Index Term Link )
 
 client requests, track ( Index Term Link )
 
 command-line utilities
  dsadm start ( Index Term Link )
  dsadm stop ( Index Term Link )
  ldapmodify ( Index Term Link )
 
 commas, in DNs, ACI targets and ( Index Term Link )
 
 computed attributes, generated by roles ( Index Term Link )
 
 configuration, Directory Proxy Server ( Index Term Link )
 
 configuration changes, require restart ( Index Term Link )
 
 configuration entries, access ( Index Term Link )
 
 configuration properties ( Index Term Link )
 
 configure, export client certificate ( Index Term Link )
 
 configure listeners ( Index Term Link )
 
 connection based router ( Index Term Link )
 
 connection handler, DN filtering property ( Index Term Link )
 
 connection handlers ( Index Term Link )
 
 connection pool wait timeout ( Index Term Link )
 
 connection timeout ( Index Term Link )
 
 connections ( Index Term Link )
  clients ( Index Term Link )
 
 CoS
  creating
   classic CoS from the command line ( Index Term Link )
   indirect CoS from the command line ( Index Term Link )
   pointer CoS from the command line ( Index Term Link )
   template entries from the command line ( Index Term Link )
  generating operational attributes ( Index Term Link )
  multi-valued attributes (merge-schemes) ( Index Term Link )
  overriding real attribute values ( Index Term Link )
  priority among templates ( Index Term Link )
  role-based CoS ( Index Term Link )
 
 cosAttribute attribute type ( Index Term Link )
 
 cosClassicDefinition object class ( Index Term Link )
 
 cosIndirectDefinition object class ( Index Term Link )
 
 cosIndirectSpecifier attribute type ( Index Term Link )
 
 cosPointerDefinition object class ( Index Term Link )
 
 cosPriority attribute type ( Index Term Link )
 
 cosSpecifier attribute type ( Index Term Link )
 
 cosSuperDefinition object class ( Index Term Link )
 
 cosTemplateDN attribute type ( Index Term Link )
 
 credential levels ( Index Term Link )
 
 custom distribution algorithm ( Index Term Link )
 
 customize search limits ( Index Term Link )
    
D
 
 data storage ( Index Term Link )
 
 data view
  coordinator data view ( Index Term Link )
  default data view ( Index Term Link )
  different data sources
   parts of subtrees ( Index Term Link )
   subtrees ( Index Term Link )
   Superior and Subordinate Subtrees ( Index Term Link )
  hierarchy and distribution algorithm ( Index Term Link )
  JDBC data view ( Index Term Link )
  LDIF data view ( Index Term Link )
  multiple data equivalent sources ( Index Term Link )
  route all requests ( Index Term Link )
 
 data views, affinity ( Index Term Link )
 
 database compaction ( Index Term Link )
 
 db2ldif utility, exporting a replica ( Index Term Link )
 
 default locations ( Index Term Link )
 
 default self-signed certificate ( Index Term Link )
 
 delete logs ( Index Term Link )
  file size based ( Index Term Link )
  free disk space ( Index Term Link )
  time based ( Index Term Link )
 
 DIGEST-MD5, see SASL ( Index Term Link )
 
 Directory Administrator ( Index Term Link )
 
 directory entries, managing from command line ( Index Term Link )
 
 Directory Manager ( Index Term Link )
  configuring ( Index Term Link ) ( Index Term Link )
  privileges ( Index Term Link ) ( Index Term Link )
 
 Directory Proxy Server Instance ( Index Term Link )
 
 Directory Proxy Server instance
  back up ( Index Term Link )
 
 Directory Proxy Server Instance
  create ( Index Term Link )
  delete ( Index Term Link )
  restart ( Index Term Link )
 
 Directory Proxy Server instance
  restore ( Index Term Link )
 
 Directory Proxy Server Instance
  start, stop ( Index Term Link )
  status ( Index Term Link )
 
 directory server
  configuration ( Index Term Link )
  controlling access ( Index Term Link )
  modifying entries using DSCC ( Index Term Link )
 
 Directory Service Control Center ( Index Term Link )
 
 distribution ( Index Term Link )
 
 dpadm
  create ( Index Term Link )
  delete ( Index Term Link )
  info ( Index Term Link )
  restart ( Index Term Link )
  start ( Index Term Link )
  stop ( Index Term Link )
 
 dpconf
  get-server-prop ( Index Term Link )
  LDAP data source
   create-ldap-data-source ( Index Term Link )
  LDAP data source pool
   create-ldap-data-source-pool ( Index Term Link )
   get-ldap-data-source-pool-prop ( Index Term Link )
   list-ldap-data-source-pools ( Index Term Link )
   set-ldap-data-source-pool-prop ( Index Term Link )
  LDAP data sources
   get-ldap-data-source-prop ( Index Term Link )
   list-ldap-data-sources ( Index Term Link ) ( Index Term Link )
   set-ldap-data-source-prop ( Index Term Link )
  set-server-prop ( Index Term Link )
 
 dpconf info ( Index Term Link )
 
 dsadm ( Index Term Link )
  help for ( Index Term Link )
 
 dsadm create ( Index Term Link )
 
 dsadm delete ( Index Term Link )
 
 dsadm start ( Index Term Link )
 
 dsadm stop ( Index Term Link )
 
 DSCC ( Index Term Link ) ( Index Term Link )
  accessing ( Index Term Link )
  administration users ( Index Term Link )
 
 dsconf ( Index Term Link )
  environment variables ( Index Term Link )
  help for ( Index Term Link )
 
 dsconf info ( Index Term Link )
 
 dse.ldif file, backing up ( Index Term Link )
 
 dsutil, help for ( Index Term Link )
 
 dynamic groups, see groups ( Index Term Link )
    
E
 
 entries
  deleting from the command line ( Index Term Link )
  finding ( Index Term Link )
  managing from command line ( Index Term Link )
  modifying from the command line ( Index Term Link )
  modifying with DSCC ( Index Term Link )
 
 environment variables ( Index Term Link )
 
 excluded-subtrees, configure ( Index Term Link )
    
F
 
 filtered role, example ( Index Term Link )
    
G
 
 groupdn keyword ( Index Term Link )
 
 groups ( Index Term Link ) ( Index Term Link )
  access control example ( Index Term Link )
  access to directory ( Index Term Link )
  dynamic groups ( Index Term Link )
  referential integrity management ( Index Term Link )
 
 GSSAPI, see SASL ( Index Term Link )
    
H
 
 heap size ( Index Term Link )
    
I
 
 importing LDIF ( Index Term Link )
  from the command line ( Index Term Link )
 
 index list threshold, limiting size ( Index Term Link )
 
 indexes, limiting size ( Index Term Link )
 
 indexing
  browsing index ( Index Term Link )
  creating browsing indexes for client searches ( Index Term Link )
  deleting an index file ( Index Term Link )
  reindexing a suffix ( Index Term Link )
  reindexing by reinitializing a suffix ( Index Term Link )
 
 install-path ( Index Term Link )
 
 instance-path ( Index Term Link )
 
 instances
  creating ( Index Term Link )
  deleting ( Index Term Link )
  starting, stopping, and restarting ( Index Term Link )
 
 internationalization, modifying entries ( Index Term Link )
 
 ip keyword ( Index Term Link ) ( Index Term Link )
 
 isw-hostname directory ( Index Term Link )
    
J
 
 Java Naming and Directory Interface ( Index Term Link )
 
 JDBC data view ( Index Term Link )
  configuring ( Index Term Link )
  testing ( Index Term Link )
 
 JDBC table, relationship ( Index Term Link )
 
 JDBC tables, attributes, and object classes ( Index Term Link )
 
 join data view
  create ( Index Term Link )
  test ( Index Term Link )
 
 join data views ( Index Term Link )
 
 join rule ( Index Term Link )
 
 join view, secondary view ( Index Term Link )
    
K
 
 Kerberos, see SASL ( Index Term Link )
 
 keyword
  ip ( Index Term Link ) ( Index Term Link )
    
L
 
 LDAP clients, authentication over SSL ( Index Term Link )
 
 LDAP data source
  attach to an LDAP Data Source ( Index Term Link )
  configure ( Index Term Link )
  create ( Index Term Link )
 
 LDAP data source pools
  attach an LDAP data source ( Index Term Link )
  configure ( Index Term Link )
  create ( Index Term Link )
 
 LDAP data view ( Index Term Link )
  configure ( Index Term Link )
  create ( Index Term Link )
  testing ( Index Term Link )
 
 ldapdelete utility, deleting entries ( Index Term Link )
 
 ldapmodify utility, modifying entries ( Index Term Link )
 
 ldapsearch utility ( Index Term Link )
 
 ldif2ldap utility ( Index Term Link )
 
 load balancing ( Index Term Link )
  configure weights ( Index Term Link )
  failover algorithm ( Index Term Link )
 
 load balancing algorithm ( Index Term Link )
  proportional algorithm ( Index Term Link )
  saturation algorithm ( Index Term Link )
 
 local log directory ( Index Term Link )
 
 local user mapping ( Index Term Link )
 
 log rotation ( Index Term Link )
  access and error logs ( Index Term Link )
  disable ( Index Term Link )
 
 logging, Directory Proxy Server ( Index Term Link )
 
 logging alerts ( Index Term Link )
 
 logs ( Index Term Link )
    
M
 
 macro ACIs
  example ( Index Term Link )
  overview ( Index Term Link )
  syntax ( Index Term Link )
 
 Message Queue ( Index Term Link )
 
 monitor data source
  dedicated connections ( Index Term Link )
  test established connections ( Index Term Link )
 
 monitoring ( Index Term Link )
  log files ( Index Term Link )
  replication status ( Index Term Link )
 
 multi-valued properties, setting ( Index Term Link )
    
N
 
 nsComplexRoleDefinition object class ( Index Term Link )
 
 nsFilteredRoleDefinition object class ( Index Term Link )
 
 nsManagedRoleDefinition object class ( Index Term Link )
 
 nsMatchingRule attribute type ( Index Term Link )
 
 nsNestedRoleDefinition object class ( Index Term Link )
 
 nsRoleDefinition object class ( Index Term Link )
 
 nsRoleDN attribute type ( Index Term Link ) ( Index Term Link )
 
 nsRoleFilter attribute type ( Index Term Link )
 
 nsRoleScopeDN attribute type ( Index Term Link )
 
 nsSimpleRoleDefinition object class ( Index Term Link )
    
O
 
 object classes
  See also schema
  cosClassicDefinition ( Index Term Link )
  cosIndirectDefinition ( Index Term Link )
  cosPointerDefinition ( Index Term Link )
  cosSuperDefinition ( Index Term Link )
  nsComplexRoleDefinition ( Index Term Link )
  nsFilteredRoleDefinition ( Index Term Link )
  nsManagedRoleDefinition ( Index Term Link )
  nsNestedRoleDefinition ( Index Term Link )
  nsRoleDefinition ( Index Term Link )
  nsSimpleRoleDefinition ( Index Term Link )
  referral ( Index Term Link )
 
 operational affinity algorithm
  cache optimization ( Index Term Link )
  global account lockout ( Index Term Link )
    
P
 
 password policies
  account lockout ( Index Term Link )
  allowing grace authentications ( Index Term Link )
  assigning a specialized policy directly ( Index Term Link )
  assigning a specialized policy using roles and CoS ( Index Term Link )
  concepts ( Index Term Link )
  configuring default password policy ( Index Term Link )
  creating a first login policy ( Index Term Link )
  creating a specialized policy ( Index Term Link )
  managing account lockout ( Index Term Link )
  password changes ( Index Term Link )
  password expiration ( Index Term Link )
  password values ( Index Term Link )
  resetting passwords ( Index Term Link )
  safe password modification ( Index Term Link )
  tracking last authentication ( Index Term Link )
  viewing default password policy ( Index Term Link )
  worksheet for ( Index Term Link )
 
 passwords, preventing null ( Index Term Link )
 
 permissions, overview ( Index Term Link )
 
 port number, directory server configuration ( Index Term Link )
 
 proxy authorization ( Index Term Link )
  ACI example ( Index Term Link )
    
R
 
 realm, in SASL DIGEST-MD5 ( Index Term Link )
 
 ref attribute type ( Index Term Link )
 
 referential integrity
  attributes ( Index Term Link )
  log file ( Index Term Link )
  overview ( Index Term Link )
  with replication ( Index Term Link ) ( Index Term Link )
 
 referral object class ( Index Term Link )
 
 referrals
  creating smart referrals ( Index Term Link )
  default referrals ( Index Term Link )
  global referrals ( Index Term Link )
  setting suffix-level referrals ( Index Term Link )
 
 reindexing by reinitializing a suffix ( Index Term Link )
 
 remote user mapping ( Index Term Link )
 
 renaming attributes, DNs ( Index Term Link )
 
 replication ( Index Term Link )
  compatibility with earlier versions ( Index Term Link )
  creating a replication agreement ( Index Term Link )
  ensuring synchronization ( Index Term Link )
  initializing cascading replicas ( Index Term Link )
  monitoring status ( Index Term Link )
  over WAN ( Index Term Link )
  referential integrity configuration ( Index Term Link )
  with SSL ( Index Term Link )
 
 request filtering policy ( Index Term Link )
 
 requests
  back-end LDAP servers ( Index Term Link )
   alternate user ( Index Term Link )
   bind repay ( Index Term Link )
   client identity ( Index Term Link )
   proxy authorization ( Index Term Link )
 
 resource limits per account ( Index Term Link )
 
 resource limits policy ( Index Term Link )
 
 restoring backups, replication considerations ( Index Term Link )
 
 retrieve monitored data
  data sources ( Index Term Link )
  Directory Proxy Server ( Index Term Link )
 
 retro change log
  ACIs ( Index Term Link )
  overview ( Index Term Link )
  trimming ( Index Term Link )
 
 roledn keyword ( Index Term Link )
 
 roles ( Index Term Link )
  access to directory ( Index Term Link )
  creating
   filtered roles from the command line ( Index Term Link )
   managed roles from the command line ( Index Term Link )
   nested roles from the command line ( Index Term Link )
  filtered
   example ( Index Term Link )
  role-based class of service (CoS) ( Index Term Link )
 
 root DN, see Directory Manager ( Index Term Link ) ( Index Term Link )
 
 rotate logs, manually ( Index Term Link )
 
 rwd keyword ( Index Term Link )
 
 rws keyword ( Index Term Link )
    
S
 
 SASL ( Index Term Link )
  configuring DIGEST_MD5 in clients ( Index Term Link )
  configuring DIGEST-MD5 on the server ( Index Term Link )
  configuring GSSAPI on the server ( Index Term Link )
  configuring Kerberos on the server ( Index Term Link )
  DIGEST-MD5 realm ( Index Term Link )
  GSSAPI ( Index Term Link )
  identity mapping for DIGEST-MD5 ( Index Term Link )
  identity mappings for GSSAPI and Kerberos ( Index Term Link )
  Kerberos ( Index Term Link )
  using Kerberos in clients ( Index Term Link )
 
 schema ( Index Term Link )
  allowed (MAY) attributes of an object class ( Index Term Link )
  checking ( Index Term Link )
  creating attribute type definitions ( Index Term Link )
  creating object class definitions ( Index Term Link )
  deleting attribute type definitions ( Index Term Link )
  deleting object class definitions ( Index Term Link )
  extending and preserving a custom file name ( Index Term Link )
  extending through LDAP ( Index Term Link )
  extending using a file and replication ( Index Term Link )
  required (MUST) attributes of an object class ( Index Term Link )
  viewing attribute type definitions ( Index Term Link )
  viewing object class definitions ( Index Term Link )
 
 search data hiding rules ( Index Term Link )
 
 searching ( Index Term Link )
 
 security ( Index Term Link )
  client authentication ( Index Term Link )
 
 serverroot directory ( Index Term Link )
 
 SLAMD Distributed Load Generation Engine ( Index Term Link )
 
 SSL ( Index Term Link )
  client authentication ( Index Term Link )
  configuring clients to use SSL ( Index Term Link )
  installing a server certificate ( Index Term Link )
  trusting the Certificate Authority ( Index Term Link ) ( Index Term Link )
  with replication ( Index Term Link )
 
 SSL ciphers, SSL protocols ( Index Term Link )
 
 subtypes
  for binary attributes ( Index Term Link )
  for languages in LDIF update statements ( Index Term Link )
 
 suffixes ( Index Term Link )
  backing up the entire directory ( Index Term Link )
  compacting ( Index Term Link )
  creating from command line ( Index Term Link )
  deleting a suffix ( Index Term Link )
  reindexing a suffix ( Index Term Link )
  setting suffix-level referrals ( Index Term Link )
  temporarily disabling ( Index Term Link )
    
T
 
 target
  DNs containing commas ( Index Term Link )
  overview ( Index Term Link )
 
 timeofday keyword ( Index Term Link )
 
 TLS ( Index Term Link )
    
U
 
 UID uniqueness plug-in ( Index Term Link )
 
 unique attribute plug-in, configuring ( Index Term Link )
 
 user access, example ( Index Term Link )
 
 userattr keyword ( Index Term Link )
  restriction on add ( Index Term Link )
    
V
 
 virtual access controls ( Index Term Link )
 
 virtual configurations ( Index Term Link )
  LDAP directory, MySQL database ( Index Term Link )
 
 virtual data views ( Index Term Link )
  access control ( Index Term Link )
  schema checking ( Index Term Link )
 
 virtual transformation, examples ( Index Term Link )
 
 virtual transformations ( Index Term Link )
 
 virtualization ( Index Term Link )
 
 VLV index, see indexing with browsing index ( Index Term Link )