Sun Java System Directory Server Enterprise Edition 6.0 Installation Guide

Installation Overview

This section illustrates a single-host installation procedure for Identity Synchronization for Windows.

Figure 4–1 Single-Host Installation Procedure

Flow diagram showing steps for upgrading a single-host
environment.

Some components must be installed in a particular order, so be sure to read all installation instructions carefully.

Identity Synchronization for Windows provides a “To Do” list, which is displayed throughout the installation and configuration process. This information panel lists all of the steps you must follow to successfully install and configure the product.

Figure 4–2 To Do List for Identity Synchronization for Windows Installation and Configuration

This panel lists the remaining installation/configuration
steps you must perform.

As you go through the installation and configuration process, the program greys-out all completed steps in the list (as you can see in Installation Overview).

The rest of this section provides an overview of the installation and configuration process, and is organized as follows:

Installing Core

When you install Core, you will be installing the following components:


Note –

Instructions for installing Core are provided in Chapter 5, Installing Core


Configuring the Product

After installing Core, you use the Console to initially configure the directory sources to be synchronized (and other characteristics of the deployment) all from a centralized location.


Note –

Instructions for configuring directory resources are provided in Chapter 6, Configuring Core Resources


Preparing the Directory Server

Directory Server Connectors support the Sun Java System Directory Server 6.0.

Before you can install Directory Server Connectors, you must prepare a Sun Java System Directory Server source for every configured Directory Server master (both preferred and secondary masters) being synchronized.

You can perform this task from the Console or from the command line using the idsync prepds subcommand.


Note –

Instructions for preparing Directory Server are provided in Preparing Sun Directory Source.


Installing Connectors and Configuring Directory Server Plug-in

You can install any number of connectors depending on the number of configured directories available in your system. Both the Console and the installation program use the directory label to associate a connector with the directory that is synchronized.

Table 4–1 Label Naming Conventions

Connector Type 

Directory Source Label 

Subcomponent 

Directory Server Connector 

root suffix or suffix/database

Directory Server Plug-in 

Configure one Plug-in in every Directory Server (master or consumer) for the root suffix being synchronized. 

AD Connector 

Domain name 

None 

NT Connector 

Domain name 

(Automatically installed with the Window NT Connector) Change Detector and Password Filter DLL subcomponents are installed together in the same installation.

You must install the Windows NT Connector using the graphical user interface (GUI) installer. 

Table 4–2 Label Naming Examples

Connector Name 

Directory Source 

CNN100

SunDS1 on ou=isw_data1

CNN101

AD1

CNN102

SunDS1 on ou-isw_data2

CNN103

SunDS2


Note –

Instructions for installing and configuring Connectors are provided in Chapter 5, Installing Core


Synchronizing Existing Users

After installing the connectors, plug-ins, and subcomponents you must run the idsync resync command line utility to bootstrap deployments with existing users. This command uses administrator-specified matching rules to

For more information about synchronizing existing users, see Chapter 8, Synchronizing Existing Users and User Groups.