test

System Administration Guide: Naming and Directory Services (DNS, NIS, and LDAP)

Using Typical Configuration

Most first time configurations of iPlanet Directory Server 5.1 can be performed using the Typical option of the setup program.

How to configure iPlanet Directory Server 5.1 using typical configuration

  1. Become superuser.

  2. Run the iPlanet Directory Server 5.1 program.

    # /usr/sbin/directoryserver setup

  3. When you are prompted for what you want to install, hit enter for [the default] iPlanet Servers.

  4. When you are prompted for Directory Suite and Administration Services, hit enter to select all [the default].

  5. Hit enter to select all Directory Suite components.

  6. Hit enter to select all Administration components.

  7. When prompted for the hostname, select the default [the host] or enter an alternative fully qualified domain name.

    Caution – Caution –

    Note that the default hostname may be incorrect if the installer cannot locate a DNS name for your system. For example, you might not have a DNS name if your system uses NIS. The hostname must be a fully qualified host and domain name. If the default hostname is not a fully qualified host and domain name, configuration will fail.

  8. The setup program then asks you for the System User and the System Group names. Enter the identity under which you want the servers to run.

  9. For the configuration directory, select the default if this directory will host your o=NetscapeRoot tree. Otherwise, enter Yes. You will then be asked for the contact information for the configuration directory.

    If the server you are currently installing is not the configuration directory, then the configuration directory must exist before you can continue this configuration.

  10. The setup program then asks if the server you are currently installing will be the one for your user data. For most cases, you can select the default. However, if you intend this server instance to be used as a configuration directory only, then you should enter Yes.

  11. For the iPlanet Directory Server 5.1 port, select the default (389) unless you already have another application using that port.

  12. For the iPlanet Directory Server 5.1 Identifier, enter a unique value (normally the default is sufficient).

    This value is used as part of the name of the directory in which the iPlanet Directory Server 5.1 instance is installed. For example, if your machine's host name is phonebook, then this name is the default and selecting it will cause the iPlanet Directory Server 5.1 instance to be installed into a directory labeled slapd-phonebook.

    Caution – Caution –

    The iPlanet Directory Server 5.1 identifier must not contain a period. For example, example.server.com is not a valid server identifier name.

  13. For Configuration Directory Administrator ID and password, enter the name and password that you will log in as when you want to authenticate to the console with full privileges.

  14. For a directory suffix, enter a distinguished name meaningful to your enterprise.

    This string is used to form the name of all your organization's directory entries. Therefore, pick a name that is representative of your organization. It is recommended that you pick a suffix that corresponds to your internet DNS name.

    For example, if your organization uses the DNS name example.com, then enter dc=example,dc=com here.

  15. For Directory Manager DN, enter the distinguished name that you will use when managing the contents of your directory with unlimited privileges.

    Note –

    Any Distinguished Names must be entered in the UTF-8 character set encoding. Older encodings such as ISO-8859-1 are not supported.

    In former releases of iPlanet Directory Server 5.1, the Directory Manager was known as the root DN. This is the entry that you bind to the directory as when you want access control to be ignored. This distinguished name can be short and does not have to conform to any suffix configured for your directory. However, it should not correspond to an actual entry stored in your directory.

  16. For the Directory Manager password, enter a value that is at least 8 characters long.

  17. For Administration Domain, enter the domain that you want this server to belong to.

    The name you enter should be a unique string that is descriptive of the organization responsible for administering the domain.

  18. For the administration port number, enter a value that is not in use (for example, you might want to use the value 5100 to indicate a 5.1 iPlanet Directory Server 5.1). Be sure to record this value somewhere you can remember.

  19. For the user you want to run Administration Server as, enter root, the default.

    The server is then minimally configured, and started. You are told what host and port number Administration Server is listening on. The server is configured to use the following suffixes.

    • The suffix that you configured

    • o=NetscapeRoot

    Do not modify the contents of the directory under the o=NetscapeRoot suffix. Either create data under the first suffix, or create a new suffix to be used for this purpose. For details on how to create new suffixes for your iPlanet Directory Server 5.1, see the iPlanet Directory Server 5.1 Administrator's Guide.