Sun Directory Server Enterprise Edition 7.0 Administration Guide

Creating and Configuring LDIF Data Views

An LDIF data view is a simple virtual data view in which an LDIF file is made to look like an LDAP data source. Unlike for LDAP data views, you do not create data sources or data source pools when you set up LDIF data views. Instead, you specify an LDIF file when you create the data view. By default, you cannot write to an LDIF data view. For more information, see Defining Access Control on Virtual Data Views.

For information about creating and configuring LDIF data views, see the following procedures.

ProcedureTo Create an LDIF Data View

You cannot use DSCC to perform this task. Use the command line, as described in this procedure.

  1. Create an LDIF data view.

    $ dpconf create-ldif-data-view -h host -p port view-name path-to-ldif-file suffix-dn
  2. (Optional) View the list of LDIF data views.

    $ dpconf list-ldif-data-views -h host -p port

    The virtual access controls data view is the only default LDIF data view. This data view is generated by the server and enables requests to be routed to virtual access control instructions (ACIs).

ProcedureTo Configure an LDIF Data View

You cannot use DSCC to perform this task. Use the command line, as described in this procedure.

  1. View the properties of an LDIF data view.

    $ dpconf get-ldif-data-view-prop -h host -p port view-name

    An LDIF data view has the following default properties:

    alternate-search-base-dn                    :  -  
    attr-name-mappings                          :  none  
    base-dn                                     :  suffixDN
    bind-pwd-attr                               :  userPassword  
    contains-shared-entries                     :  false  
    custom-distribution-algorithm               :  none  
    db-pwd-encryption                           :  clear-text  
    description                                 :  -  
    distribution-algorithm                      :  none  
    dn-join-rule                                :  none  
    dn-mapping-attrs                            :  none  
    dn-mapping-source-base-dn                   :  none  
    excluded-subtrees                           :  -  
    filter-join-rule                            :  none  
    is-enabled                                  :  true  
    is-read-only                                :  false  
    is-routable                                 :  true  
    ldif-data-source                            :  /path/to/filename.ldif
    lexicographic-attrs                         :  all  
    lexicographic-lower-bound                   :  none  
    lexicographic-upper-bound                   :  none  
    non-viewable-attr                           :  none  
    non-writable-attr                           :  none  
    numeric-attrs                               :  all  
    numeric-default-data-view                   :  false  
    numeric-lower-bound                         :  none  
    numeric-upper-bound                         :  none  
    pattern-matching-base-object-search-filter  :  all  
    pattern-matching-dn-regular-expression      :  all  
    pattern-matching-one-level-search-filter    :  all  
    pattern-matching-subtree-search-filter      :  all  
    process-bind                                :  -  
    replication-role                            :  master  
    viewable-attr                               :  all except non-viewable-attr  
    writable-attr                               :  all except non-writable-attr
  2. Change one or more of the properties that are listed in Step 1.

    $ dpconf set-ldif-data-view-prop -h host -p port view-name property:value \
     [property:value ... ]

    For example, to change the source LDIF file for the data view, set the ldif-data-source property.

    $ dpconf set-ldif-data-view-prop -h host1 -p 1389 -D cn="Proxy Manager" \
    myLDIFDataView ldif-data-source:/local/files/example.ldif