Install the Oracle Directory Server Enterprise Edition

Language:

The Directory Server packages are available from the Oracle web site.

Before You Begin

You are on a Trusted Extensions system with a global zone. The system has no labeled zones. You must be in the root role in the global zone.

Trusted Extensions LDAP servers are configured for clients who determine password operations and password policy. Specifically, the policy set by the LDAP server is not used. For the password parameters that you can set on the client, see Managing Password Information in Securing Systems and Attached Devices in Oracle Solaris 11.2 . See also the pam.conf(4) man page.

Note - The use of pam_ldap on an LDAP client is not an evaluated configuration for Trusted Extensions.

Before you install the Directory Server packages, add the FQDN to your system's hostname entry.
The FQDN is the Fully Qualified Domain Name. This name is a combination of the host name and the administration domain, as in:
```
# pfedit /etc/hosts
...
192.168.5.5 myhost myhost.example-domain.com
```
Download the Oracle Directory Server Enterprise Edition packages from the Oracle web site.
Select the most recent software that is appropriate for your platform.
Install the Directory Server packages.
Answer the questions by using the information from Collect Information for the LDAP Server. For a full list of questions, defaults, and suggested answers, see Chapter 4, Setting Up Oracle Directory Server Enterprise Edition With LDAP Clients, in Working With Oracle Solaris 11.2 Directory and Naming Services: LDAP and Chapter 5, Setting Up LDAP Clients, in Working With Oracle Solaris 11.2 Directory and Naming Services: LDAP .

(Optional)Add the environment variables for the Directory Server to your path.

# $PATH
/usr/sbin:.../opt/SUNWdsee/dsee6/bin:/opt/SUNWdsee/dscc6/bin:/opt/SUNWdsee/ds6/bin:
/opt/SUNWdsee/dps6/bin

(Optional)Add the Directory Server man pages to your MANPATH.
```
/opt/SUNWdsee/dsee6/man
```

Enable the cacaoadm program and verify that the program is enabled.

# /usr/sbin/cacaoadm enable
# /usr/sbin/cacaoadm start
start: server (pid n) already running

Ensure that the Directory Server starts at every boot.
Templates for the SMF services for the Directory Server are in the Oracle Directory Server Enterprise Edition packages.
- For a Trusted Extensions Directory Server, enable the service.
```
# dsadm stop /export/home/ds/instances/your-instance
# dsadm enable-service -T SMF /export/home/ds/instances/your-instance
# dsadm start /export/home/ds/instances/your-instance
```
  For information about the dsadm command, see the dsadm(1M) man page.
- For a proxy Directory Server, enable the service.
```
# dpadm stop /export/home/ds/instances/your-instance
# dpadm enable-service -T SMF /export/home/ds/instances/your-instance
# dpadm start /export/home/ds/instances/your-instance
```
  For information about the dpadm command, see the dpadm(1M) man page.

Verify your installation.

# dsadm info /export/home/ds/instances/your-instance
Instance Path:         /export/home/ds/instances/your-instance
Owner:                 root(root)
Non-secure port:       389
Secure port:           636
Bit format:            32-bit
State:                 Running
Server PID:            298
DSCC url:              -
SMF application name:  ds--export-home-ds-instances-your-instance
Instance version:      D-A00

Troubleshooting

For strategies to solve LDAP configuration problems, see Chapter 6, Troubleshooting LDAP, in Working With Oracle Solaris 11.2 Directory and Naming Services: LDAP .