Complete Contents
Introduction
Chapter 1 Preparing for Installation
Chapter 2 Using Express and Typical Install
Chapter 3 Using Custom Install
Chapter 4 Silent Installation
Chapter 5 Installing and Configuring the Synch Service
Chapter 6 Upgrading and Migrating the Directory Server
Chapter 7 Troubleshooting
Previous Next Contents Index


Chapter 3 Using Custom Install

This chapter describes how to perform various types of custom installations. It is assumed that before you attempt a custom installation, you already familiar with the Netscape Directory Server, its usage, and its basic concepts.

This chapter describes the following activities during installation:


Creating an SIR Consumer Server
This section describes how to create a consumer server for supplier-initiated replication (SIR) using custom install. The procedure is described first for Unix installations, and then for Windows NT. (See  "SIR Consumer Server Installs on Windows NT".) For more information about SIR, refer to the Netscape Directory Server Administrator's Guide.

SIR Consumer Server Installs on Unix

  1. Log in as root.

  2. If you have not already done so, download the product binaries file to the to the machine on which you want to install the server.

  3. Unpack the product binaries file using the following command:

    4. # gzip -dc <filename>.tar.gz | tar -xvof-

    where <filename> corresponds to the product binaries that you want to unpack.

  4. Run the setup program. You can find it in the directory where you untarred installation files.

  5. When you are asked what you would like to install, select the default, Netscape Servers.

  6. When you are asked what type of installation you would like to perform, select the Custom Installation.

  7. For server root, enter a full path to the location where you want to install your server. The location that you enter must be some directory other than the directory from which you are running setup. If the directory that you specify does not exist, setup creates it for you.

  8. For Netscape Server Family, Netscape Server Family Core Components, Netscape Directory Suite, and Administration Services components, select the default (all components).

  9. For host name, select the default (which is the local host).

  10. For the user and group to run the servers as, enter the identity that you want this server to run as. For more information on the user and groups that you should use when running Netscape servers, see "Decide Which User and Group to Run Netscape Servers As (Unix only)".

  11. For configuration directory, enter Yes. This allows you to use your existing supplier server as the configuration directory. If you want this consumer server to be its own configuration directory, then enter No for this prompt. The next few steps assume that you entered Yes for this prompt. If you are entering No then skip to step 14.

  12. For configuration directory host name and port number, enter the fully qualified domain name of the machine on which the configuration directory is running, and then enter the port number that the configuration directory is listening to.

  13. For Configuration Directory Administrator ID and password, enter the name and password that you will log in as when you want to authenticate to the console with full privileges. This user ID and password was created when the configuration directory was installed.

  14. For Administration Domain, enter the domain that you want this server to belong to. The name that you enter should be a unique string that is descriptive of the organization responsible for administering the domain. For information on administration domains, see "Determine the Administration Domain".

  15. For the Directory Server port, select the default (389) unless you already have another application using that port.

  16. For server identifier, enter some unique value (normally the default is sufficient). This value is used as part of the name of the directory in which the Directory Server instance is installed. For example, if your machine's host name is phonebook then this name is the default and selecting it will cause the Directory Server instance to be installed into a directory labeled slapd-phonebook.

  17. For a directory suffix, enter a distinguished name meaningful to your enterprise. This string is used to form the name of all your organization's directory entries. Therefore, pick some name that is representative of your organization. It is recommended that you pick a suffix that corresponds to your internet DNS name.

    18. For example, if your organization uses the DNS name airius.com, then enter o=airius.com here.

  18. For Directory Manager DN, enter the distinguished name that you will use when managing the contents of your directory with unlimited privileges (in former releases of the Directory Server, the Directory Manager was known as the root DN). This is the entry that you bind to the directory as when you want access control to be ignored. This distinguished name can be short and does not have to conform to any suffix configured for your directory. It also should not correspond to an actual entry stored in your directory. Examples of possible directory manager DNs are

    19. cn=Directory Manager

    cn=root

    uid=admin

  19. For Directory Manager password, enter a value that is at least 8 characters long.

  20. For set up replication, enter Yes.

  21. For set up a supplier server, select the default (this server is not a supplier).

  22. For set up a consumer server, select the first option (SIR).

  23. For Supplier DN and password, enter the distinguished name and password that the supplier server will use when updating this consumer server.

  24. For disable schema checking, select the default unless you think you may have a problem with old schema. It is strongly recommended that you clean up your directory schema before you import your LDIF to the Directory Server. Further, you should NOT run a production Directory Server with schema checking turned off.

  25. For administration port number, enter a value that is not in use. Be sure to record this value.

  26. For the IP address to bind to, select the default unless you want the Administration Server to listen to some other IP address (this may be necessary for some multi-homed systems). If so, then enter that other IP address.

  27. For server administrator ID, enter the user ID and password that you will use to authenticate to the Administration Server when the Directory Server is not running. For best results, this user ID/password pair should be the same as the user ID/password that you specified for the Configuration Directory Administrator.

  28. For the user you want to run the Administration Server as, enter Root. This is the default. For information on why you should run the Administration Server as root, see "Decide Which User and Group to Run Netscape Servers As (Unix only)".
The server is then installed and started. You still must initialize your consumer server from the supplier server's directory tree. See the Netscape Directory Server Administrator's Guide for information on consumer creation.

SIR Consumer Server Installs on Windows NT

  1. Log in as administrator.

  2. If you have not already done so, download the product binaries file to the to the machine on which you want to install the server.

  3. Unzip the product binaries files and run the setup program.

  4. When you are asked what you would like to install, select the default, Netscape Servers.

  5. When you are asked what type of installation you would like to perform, select the Custom Installation.

  6. For server root, enter a full path to the location where you want to install your server. The location that you enter must be some directory other than the directory from which you are running setup. If the directory that you specify does not exist, setup creates it for you.

  7. For Netscape Server Family Core Components, Netscape Directory Suite, and NT Synchronization Service, select all the components except for the NT Synchronization Service. (NT Synchronization Service installation is described separately in Chapter  5, "Installing and Configuring the Synch Service."

  8. For configuration directory, select "Use existing configuration Directory Server." This allows you to use your existing supplier server as the configuration directory.

    9. If you want this consumer server to be its own configuration directory, then select "This instance will be the configuration directory."

    The next few steps assume that you are using an existing configuration directory. If not then skip to step 11.

  9. For host and port, enter the fully qualified domain name of the machine on which the configuration directory is running, and then enter the port number that the configuration directory is listening to.

  10. For Bind As and password, enter the configuration directory user ID and password. That is, enter the user ID and password that you log in as when you want to authenticate to the console with full privileges. This user ID and password were created when the configuration directory was installed.

  11. For Administration Domain, enter the domain that you want this server to belong to. The name that you enter should be a unique string that is descriptive of the organization responsible for administering the domain. For information on administration domains, see "Determine the Administration Domain".

  12. For a directory suffix, enter a distinguished name meaningful to your enterprise. This string is used to form the name of all your organization's directory entries. Therefore, pick some name that is representative of your organization. It is recommended that you pick a suffix that corresponds to your internet DNS name.

    13. For example, if your organization uses the DNS name airius.com, then enter o=airius.com here.

  13. For server identifier, enter some unique value (normally the default is sufficient). This value is used as part of the name of the directory in which the Directory Server instance is installed. For example, if your machine's host name is phonebook then this name is the default and selecting it will cause the Directory Server instance to be installed into a directory labeled slapd-phonebook.

  14. For the Directory Server port, select the default (389) unless you already have another application using that port.

  15. For Directory Manager DN, enter the distinguished name that you will use when managing the contents of your directory with unlimited privileges (in former releases of the Directory Server, the Directory Manager was known as the root DN). This is the entry that you bind to the directory as when you want access control to be ignored. This distinguished name can be short and does not have to conform to any suffix configured for your directory. It also should not correspond to an actual entry stored in your directory. Examples of possible directory manager DNs are:

    16. cn=Directory Manager

    cn=root

    uid=admin

  16. For Directory Manager password, enter a value that is at least 8 characters long.

  17. For Configure server for replication, select "A consumer that will have updates pushed to it from another server (SIR)".

  18. For Supplier DN and password, enter the distinguished name and password that the supplier server will use when updating this consumer server.

  19. For disable schema checking, select the default unless you think you may have a problem with old schema. It is strongly recommended that you clean up your directory schema before you import your LDIF to the Directory Server. Further, you should NOT run a production Directory Server with schema checking turned off.

  20. For Administration Server IP Address, select the default unless you want the Administration Server to listen to some other IP address (this may be necessary for some multi-homed systems). If so, then enter that other IP address.

  21. For Administration Server Authentication, enter the user ID and password that you will use to authenticate to the Administration Server when the Directory Server is not running. For best results, this user ID/password pair should be the same as the user ID/password that you use for the Configuration Directory Administrator.

  22. For administration port number, enter a value that is not in use. Be sure to record this value.
The server is then installed and started. You still must initialize your consumer server from the supplier server's directory tree. See the Netscape Directory Server Administrator's Guide for information on consumer creation.


Creating a CIR Consumer Server
This section describes how to create a consumer server for consumer-initiated replication (CIR) using custom install. The procedure is described first for Unix installations, and then for Windows NT. (See  "CIR Consumer Server Installs on Windows NT".) For more information about CIR, refer to the Netscape Directory Server Administrator's Guide.

CIR Consumer Server Installs on Unix

  1. Log in as root.

  2. If you have not already done so, download the product binaries file to the to the machine on which you want to install the server.

  3. Unpack the product binaries file using the following command:

    4. # gzip -dc <filename>.tar.gz | tar -xvof-

    where <filename> corresponds to the product binaries that you want to unpack.

  4. Run the setup program. You can find it in the directory where you untarred installation files.

  5. When you are asked what you would like to install, select the default, Netscape Servers.

  6. When you are asked what type of installation you would like to perform, select Custom Installation.

  7. For server root, enter a full path to the location where you want to install your server. The location that you enter must be some directory other than the directory from which you are running setup. If the directory that you specify does not exist, setup creates it for you.

  8. For Netscape Server Family, Netscape Server Family Core Components, Netscape Directory Suite, and Administration Services components, select the default (all components).

  9. For host name, select the default (which is the local host).

  10. For the user and group to run the servers as, enter the identity that you want this server to run as. For more information on the user and groups that you should use when running Netscape servers, see "Decide Which User and Group to Run Netscape Servers As (Unix only)".

  11. For configuration directory, enter Yes. This allows you to use your existing supplier server as the configuration directory.

    12. If you want this consumer server to be its own configuration directory, then enter No for this prompt.

    The next few steps assume that you entered Yes for this prompt. If you are entering No then skip to step 14.

  12. For configuration directory host name and port number, enter the fully qualified domain name of the machine on which the configuration directory is running, and then enter the port number that the configuration directory is listening to.

  13. For Configuration Directory Administrator ID and password, enter the name and password that you will log in as when you want to authenticate to the console with full privileges. This userID and password was created when the configuration directory was installed.

  14. For Administration Domain, enter the domain that you want this server to belong to. The name that you enter should be a unique string that is descriptive of the organization responsible for administering the domain. For information on administration domains, see "Determine the Administration Domain".

  15. For the Directory Server port, select the default (389) unless you already have another application using that port.

  16. For server identifier, enter some unique value (normally the default is sufficient). This value is used as part of the name of the directory in which the Directory Server instance is installed. For example, if your machine's host name is phonebook then this name is the default and selecting it will cause the Directory Server instance to be installed into a directory labeled slapd-phonebook.

  17. For a directory suffix, enter a distinguished name meaningful to your enterprise. This string is used to form the name of all your organization's directory entries. Therefore, pick some name that is representative of your organization. It is recommended that you pick a suffix that corresponds to your internet DNS name.

    18. For example, if your organization uses the DNS name airius.com, then enter o=airius.com here.

  18. For Directory Manager DN, enter the distinguished name that you will use when managing the contents of your directory with unlimited privileges (in former releases of the Directory Server, the Directory Manager was known as the root DN). This is the entry that you bind to the directory as when you want access control to be ignored. This distinguished name can be short and does not have to conform to any suffix configured for your directory. It also should not correspond to an actual entry stored in your directory. Examples of possible directory manager DNs are:

    19. cn=Directory Manager

    cn=root

    uid=admin

  19. For Directory Manager password, enter a value that is at least 8 characters long.

  20. For set up replication, enter Yes.

  21. For set up a supplier server, select the default (this server is not a supplier).

  22. For set up a consumer server, select the second option (CIR).

  23. For supplier host name and port, enter the fully qualified DNS host name of the supplier server and the port that it is listening to.

  24. For the replication DN and password, enter the distinguished name on the supplier server that has read, search, and compare privileges to the replicated tree, and to the supplier server's change log directory.

  25. For the tree to replicate, enter the distinguished name of the root point of the directory tree that this consumer server will receive. That is, if you are replicating the tree under ou=people, o=airius.com, then enter that DN here.

    26. The setup program will now attempt to bind to your supplier server using the replication DN and password that you supplied. If the supplier server is not running, or if you have not yet created the replication DN on the supplier server, setup will indicate that it could not bind to the supplier server. However, the setup script will continue. Once your consumer server has been installed, you should go to your supplier server and create the directory entry and access control permissions that the consumer requires for replication purposes.

  26. For replication synch interval, enter how long you want the consumer server to wait before checking to see if any updates are required. A value of 0 causes the consumer server to always stay in synch (there is no interval between update attempts).

  27. For replication days, specify the days of the week on which replication can begin. Values are an integer, 0-6, representing a day of the week. That is, 0=Sunday, 1=Monday, 2=Tuesday, and so forth. To specify multiple days of the week, enter each integer with no delimiter between them. Thus, to replicate on Sunday and Wednesday, enter 03. To replicate every day of the week, select the default (all).

  28. For replication time, enter the range of time during which replication can begin. Specify times in 24 hour format. For example, 0100-2300 allows replication to begin anytime between 1 a.m. and 11 p.m. To allow replication to begin any time during the day, select the default (all day).

  29. For disable schema checking, select the default unless you think you may have a problem with old schema. It is strongly recommended that you clean up your directory schema before you import your LDIF to the Directory Server. Further, you should NOT run a production Directory Server with schema checking turned off.

  30. For administration port number, enter a value that is not in use. Be sure to record this value.

  31. For the IP address to bind to, select the default unless you want the Administration Server to listen to some other IP address (this may be necessary for some multi-homed systems). If so, then enter that other IP address.

  32. For Server Administrator ID, enter the user ID and password that you will use to authenticate to the Administration Server when the Directory Server is not running. For best results, this user ID/password pair should be the same as the user ID/password that you specified for the Configuration Directory Administrator.

  33. For the user you want to run the Administration Server as, enter Root. This is the default. For information on why you should run the Administration Server as root, see "Decide Which User and Group to Run Netscape Servers As (Unix only)".
The server is then installed and started. You still must initialize your consumer server from the supplier server's directory tree. See the Netscape Directory Server Administrator's Guide for information on consumer creation.

CIR Consumer Server Installs on Windows NT

  1. Log in as administrator.

  2. If you have not already done so, download the product binaries file to the to the machine on which you want to install the server.

  3. Unzip the product binaries files and run the setup program.

  4. When you are asked what you would like to install, select the default, Netscape Servers.

  5. When you are asked what type of installation you would like to perform, select Custom Installation.

  6. For server root, enter a full path to the location where you want to install your server. The location that you enter must be some directory other than the directory from which you are running setup. If the directory that you specify does not exist, setup creates it for you.

  7. For Netscape Server Family Core Components, Netscape Directory Suite, and NT Synchronization Service, select all the components except for the NT Synchronization Service. (NT Synchronization Service installation is described separately in Chapter  5, "Installing and Configuring the Synch Service."

  8. For configuration directory, select "Use existing configuration Directory Server." This allows you to use your existing supplier server as the configuration directory. If you want this consumer server to be its own configuration directory, then select "This instance will be the configuration directory." The next few steps assume that you are using an existing configuration directory. If not then skip to step 11.

  9. For host and port, enter the fully qualified domain name of the machine on which the configuration directory is running, and then enter the port number that the configuration directory is listening to.

  10. For Bind As and password, enter the configuration directory user ID and password. That is, enter the user ID and password that you log in as when you want to authenticate to the console with full privileges. This user ID and password was created when the configuration directory was installed.

  11. For Administration Domain, enter the domain that you want this server to belong to. The name that you enter should be a unique string that is descriptive of the organization responsible for administering the domain. For information on administration domains, see "Determine the Administration Domain".

  12. For a directory suffix, enter a distinguished name meaningful to your enterprise. This string is used to form the name of all your organization's directory entries. Therefore, pick some name that is representative of your organization. It is recommended that you pick a suffix that corresponds to your internet DNS name.

    13. For example, if your organization uses the DNS name airius.com, then enter o=airius.com here.

  13. For server identifier, enter some unique value (normally the default is sufficient). This value is used as part of the name of the directory in which the Directory Server instance is installed. For example, if your machine's host name is phonebook then this name is the default and selecting it will cause the Directory Server instance to be installed into a directory labeled slapd-phonebook.

  14. For the Directory Server port, select the default (389) unless you already have another application using that port.

  15. For Directory Manager DN, enter the distinguished name that you will use when managing the contents of your directory with unlimited privileges (in former releases of the Directory Server, the Directory Manager was known as the root DN). This is the entry that you bind to the directory as when you want access control to be ignored. This distinguished name can be short and does not have to conform to any suffix configured for your directory. It also should not correspond to an actual entry stored in your directory. Examples of possible directory manager DNs are:

    16. cn=Directory Manager

    cn=root

    uid=admin

  16. For Directory Manager password, enter a value that is at least 8 characters long.

  17. For Configure server for replication, select "A consumer that will pull updates from another server (CIR)".

  18. For host and port, enter the fully qualified DNS host name of the supplier server and the port that it is listening to.

  19. For Bind As and password, enter the distinguished name on the supplier server that has read, search, and compare privileges to the replicated tree, and to the supplier server's changelog directory.

  20. For the Root of Replication, enter the distinguished name of the root point of the directory tree that this consumer server will receive. That is, if you are replicating the tree under ou=people, o=airius.com, then enter that DN here.

  21. For replication days, specify the days of the week on which replication can begin. To replicate every day of the week, select the default (all).

  22. For replication time, enter the range of time during which replication can begin. To allow replication to begin at any time during the day, select the default (all day).

  23. For replication synch interval, enter how long you want the consumer server to wait before checking to see if any updates are required.

    24. The setup program will now attempt to bind to your supplier server using the replication DN and password that you supplied. If the supplier server is not running, or if you have not yet created the replication DN on the supplier server, setup will indicate that it could not bind to the supplier server. However, the setup script will continue. Once your consumer server has been installed, you should go to your supplier server and create the directory entry and access control permissions that the consumer requires for replication purposes.

  24. For disable schema checking, select the default unless you think you may have a problem with old schema. It is strongly recommended that you clean up your directory schema before you import your LDIF to the Directory Server. Further, you should NOT run a production Directory Server with schema checking turned off.

  25. For administration port number, enter a value that is not in use. Be sure to record this value.

  26. For Administration Server IP Address, select the default unless you want the Administration Server to listen to some other IP address (this may be necessary for some multi-homed systems). If so, then enter that other IP address.

  27. For Administration Server Authentication, enter the user ID and password that you will use to authenticate to the Administration Server when the Directory Server is not running. For best results, this user ID/password pair should be the same as the user ID/password that you use for the Configuration Directory Administrator.
The server is then installed and started. You still must initialize your consumer server from the supplier server's directory tree. See the Netscape Directory Server Administrator's Guide for information on consumer creation.


Creating an SIR Supplier Server
This section describes how to create a supplier server for SIR using custom install. The procedure is described first for Unix installations, and then for Windows NT. (See  "SIR Supplier Server Installs on Windows NT".) For more information about SIR, refer to the Netscape Directory Server Administrator's Guide.

SIR Supplier Server Installs on Unix

  1. Log in as root.

  2. If you have not already done so, download the product binaries file to the to the machine on which you want to install the server.

  3. Unpack the product binaries file using the following command:

    4. # gzip -dc <filename>.tar.gz | tar -xvof-

    where <filename> corresponds to the product binaries that you want to unpack.

  4. Run the setup program. You can find it in the directory where you untarred installation files.

  5. When you are asked what you would like to install, select the default, Netscape Servers.

  6. When you are asked what type of installation you would like to perform, select the Custom Installation.

  7. For server root, enter a full path to the location where you want to install your server. The location that you enter must be some directory other than the directory from which you are running setup. If the directory that you specify does not exist, setup creates it for you.

  8. For Netscape Server Family, Netscape Server Family Core Components, Netscape Directory Suite, and Administration Services components, select the default (all components).

  9. For host name, select the default (which is the local host).

  10. For the user and group to run the servers as, enter the identity that you want this server to run as. For more information on the user and groups that you should use when running Netscape servers, see "Decide Which User and Group to Run Netscape Servers As (Unix only)".

  11. For configuration directory, select the default if this directory will host your o=NetscapeRoot tree. Otherwise, enter Yes. You will then be asked for the contact information for the configuration directory. If the server you are currently installing is not the configuration directory, then the configuration directory must exist before you can continue this installation.

  12. For user directory, select the default, No.

  13. For the Directory Server port, select the default (389) unless you already have another application using that port.

  14. For server identifier, enter some unique value (normally the default is sufficient). This value is used as part of the name of the directory in which the Directory Server instance is installed. For example, if your machine's host name is phonebook then this name is the default and selecting it will cause the Directory Server instance to be installed into a directory labeled slapd-phonebook.

  15. For Configuration Directory Administrator ID and password, enter the name and password that you log in as when you want to authenticate to the console with full privileges.

  16. For a directory suffix, enter a distinguished name meaningful to your enterprise. This string is used to form the name of all your organization's directory entries. Therefore, pick some name that is representative of your organization. It is recommended that you pick a suffix that corresponds to your internet DNS name.

    17. For example, if your organization uses the DNS name airius.com, then enter o=airius.com here.

  17. For Directory Manager DN, enter the distinguished name that you will use when managing the contents of your directory with unlimited privileges (in former releases of the Directory Server, the Directory Manager was known as the root DN). This is the entry that you bind to the directory as when you want access control to be ignored. This distinguished name can be short and does not have to conform to any suffix configured for your directory. It also should not correspond to an actual entry stored in your directory. Examples of possible directory manager DNs are:

    18. cn=Directory Manager

    cn=root

    uid=admin

  18. For Directory Manager password, enter a value that is at least 8 characters long.

  19. For Administration Domain, enter the domain that you want this server to belong to. The name that you enter should be a unique string that is descriptive of the organization responsible for administering the domain. For information on administration domains, see "Determine the Administration Domain".

  20. For set up replication, enter Yes.

  21. For set up a supplier server, select the first option (SIR).

  22. For change log suffix and change log database directory, select the defaults. This is the suffix used by the directory tree that will store all changes made to the supplier server, and the location of the database used to store these changes. These changes must be tracked so that the supplier can know how to update it's consumer servers.

  23. For consumer host name and port, enter the fully qualified DNS name and port of the machine where a consumer server will be running.

  24. For the replication DN and password, enter the supplier DN and password for the consumer server. For example, cn=supplier. By entering this value here, you are only telling the supplier server how to bind to the consumer server; you are not actually setting up the supplier DN on the consumer server. For information on how to set up a supplier DN, see the Netscape Directory Server Administrator's Guide.

  25. For the tree to replicate, enter the distinguished name of the root point of the directory tree that this consumer server will receive. That is, if you are replicating the tree under ou=people, o=airius.com, then enter that DN here.

    26. At this point the setup program will attempt to bind to your consumer server using the DN and password that you supplied. If the consumer server is not running, or if you have not yet created the supplier DN on the consumer server, setup will indicate that it could not bind to the consumer server. However, the setup script will continue. Once your supplier server has been installed, you should go to your consumer server and create the supplier DN required for replication purposes.

  26. For replication days, specify the days of the week on which replication can begin. Values are an integer, 0-6, representing a day of the week. That is, 0=Sunday, 1=Monday, 2=Tuesday, and so forth. To specify multiple days of the week, enter each integer with no delimiter between them. Thus, to replicate on Sunday and Wednesday, enter 03. To replicate every day of the week, select the default (all).

  27. For replication time, enter the range of time during which replication can begin. Specify times in 24 hour format. For example, 0100-2300 allows replication to begin anytime between 1 a.m. and 11 p.m. To allow replication to begin any time during the day, select the default (all day).

  28. Now you are asked if you want to set up this supplier server to also be a consumer server. Do this if you are using replication chaining. Otherwise, select the default (NONE). For information on the questions you will be asked during a consumer server setup, see "SIR Consumer Server Installs on Unix" or "CIR Consumer Server Installs on Unix".

  29. For sample entries, select the default No.

  30. For import an LDIF file, enter the full path to an LDIF file if you have one available. Otherwise, enter the word suggest. Suggest creates a simple directory tree that conforms to Netscape's recommended directory structure.

  31. For disable schema checking, select the default unless you think you may have a problem with old schema. You are strongly recommended to clean up your directory schema before you import your LDIF to the Directory Server. Further, you should NOT run a production Directory Server with schema checking turned off.

  32. For administration port number, enter a value that is not in use. Be sure to record this value.

  33. For the IP address to bind to, select the default unless you want the Administration Server to listen to some other IP address (this may be necessary for some multi-homed systems). If so, then enter that other IP address.

  34. For Server Administrator ID, enter the user ID and password that you will use to authenticate to the Administration Server when the Directory Server is not running. For best results, this user ID/password pair should be the same as the user ID/password that you specified for the Configuration Directory Administrator.

  35. For the user you want to run the Administration Server as, enter Root. This is the default. For information on why you should run the Administration Server as root, see "Decide Which User and Group to Run Netscape Servers As (Unix only)".
The server is then installed and started. You still must initialize your consumer server(s) from the supplier server's directory tree. See the Netscape Directory Server Administrator's Guide for information on consumer creation.

SIR Supplier Server Installs on Windows NT

  1. Log in as administrator.

  2. If you have not already done so, download the product binaries file to the to the machine on which you want to install the server.

  3. Unzip the product binaries files and run the setup program.

  4. When you are asked what you would like to install, select the default, Netscape Servers.

  5. When you are asked what type of installation you would like to perform, select Custom Installation.

  6. For server root, enter a full path to the location where you want to install your server. The location that you enter must be some directory other than the directory from which you are running setup. If the directory that you specify does not exist, setup creates it for you.

  7. For Netscape Server Family Core Components, Netscape Directory Suite, and NT Synchronization Service, select all the components except for the NT Synchronization Service. (NT Synchronization Service installation is described separately in Chapter  5, "Installing and Configuring the Synch Service."

  8. For configuration directory, select the default. However, if this directory will not host your o=NetscapeRoot tree then select "Use existing configuration Directory Server." If you select this option, then the configuration directory must exist before you can continue this installation.

  9. For Directory to store data, select the default ("Store data in this Directory Server.")

  10. For server identifier, enter some unique value (normally the default is sufficient). This value is used as part of the name of the directory in which the Directory Server instance is installed. For example, if your machine's host name is phonebook then this name is the default and selecting it will cause the Directory Server instance to be installed into a directory labeled slapd-phonebook.

  11. For a directory suffix, enter a distinguished name meaningful to your enterprise. This string is used to form the name of all your organization's directory entries. Therefore, pick some name that is representative of your organization. It is recommended that you pick a suffix that corresponds to your internet DNS name.

    12. For example, if your organization uses the DNS name airius.com, then enter o=airius.com here.

  12. For the Directory Server port, select the default (389) unless you already have another application using that port.

  13. For Configuration Directory Administrator ID and password, enter the name and password that you log in as when you want to authenticate to the console with full privileges.

  14. For Administration Domain, enter the domain that you want this server to belong to. The name that you enter should be a unique string that is descriptive of the organization responsible for administering the domain. For information on administration domains, see "Determine the Administration Domain".

  15. For Directory Manager DN, enter the distinguished name that you will use when managing the contents of your directory with unlimited privileges (in former releases of the Directory Server, the Directory Manager was known as the root DN). This is the entry that you bind to the directory as when you want access control to be ignored. This distinguished name can be short and does not have to conform to any suffix configured for your directory. It also should not correspond to an actual entry stored in your directory. Examples of possible directory manager DNs are:

    16. cn=Directory Manager

    cn=root

    uid=admin

  16. For Directory Manager password, enter a value that is at least 8 characters long.

  17. For Configure server for replication, select "A supplier that will push updates to another server (SIR)".

  18. For changelog suffix and changelog database directory, select the defaults. This is the suffix used by the directory tree that will store all changes made to the supplier server, and the location of the database used to store these changes. These changes must be tracked so that the supplier can know how to update it's consumer servers.

  19. For host and port, enter the fully qualified DNS name and port of the machine where a consumer server will be running.

  20. For the Bind As and password, enter the supplier DN and password for the consumer server. For example, cn=supplier. By entering this value here, you are only telling the supplier server how to bind to the consumer server; you are not actually setting up the supplier DN on the consumer server. For information on how to set up a supplier DN, see the Netscape Directory Server Administrator's Guide.

  21. For the Root of Replication, enter the distinguished name of the root point of the directory tree that this consumer server will receive. That is, if you are replicating the tree under ou=people, o=airius.com, then enter that DN here.

  22. For replication days, specify the days of the week on which replication can begin. To replicate every day of the week, select the default (all).

  23. For replication time, enter the range of time during which replication can begin. To allow replication to begin at any time during the day, select the default (all day).

  24. For replication time, enter the range of time during which replication can begin. Specify times in 24 hour format. For example, 0100-2300 allows replication to begin anytime between 1 a.m. and 11 p.m. To allow replication to begin any time during the day, select the default (all day).

    25. At this point the setup program will attempt to bind to your consumer server using the DN and password that you supplied. If the consumer server is not running, or if you have not yet created the supplier DN on the consumer server, setup will indicate that it could not bind to the consumer server. However, the setup program will continue. Once your supplier server has been installed, you should go to your consumer server and create the supplier DN required for replication purposes.

  25. For Sample organizational structure, select the default. This causes a simple directory tree to be created for you.

  26. For Populate Database, select "Populate with custom database" if you have an LDIF file that you want to use to populate your directory. Otherwise, select the default ("Don't populate").

  27. For disable schema checking, select the default unless you think you may have a problem with old schema. It is strongly recommended that you clean up your directory schema before you import your LDIF to the Directory Server. Further, you should NOT run a production Directory Server with schema checking turned off.

  28. For administration port number, enter a value that is not in use. Be sure to record this value.

  29. For Administration Server IP Address, select the default unless you want the Administration Server to listen to some other IP address (this may be necessary for some multi-homed systems). If so, then enter that other IP address.

  30. For Administration Server Authentication, enter the user ID and password that you will use to authenticate to the Administration Server when the Directory Server is not running. For best results, this user ID/password pair should be the same as the user ID/password that you use for the Configuration Directory Administrator.
The server is then installed and started. You still must initialize your consumer server(s) from the supplier server's directory tree. See the Netscape Directory Server Administrator's Guide for information on consumer creation.


Creating a CIR Supplier Server
This section describes how to create a supplier server for CIR using custom install. The procedure is described first for Unix installations, and then for Windows NT. (See  "CIR Supplier Server Installs on Windows NT".) For more information about CIR, refer to the Netscape Directory Server Administrator's Guide.

CIR Supplier Server Installs on Unix

  1. Log in as root.

  2. If you have not already done so, download the product binaries file to the to the machine on which you want to install the server.

  3. Unpack the product binaries file using the following command:

    4. # gzip -dc <filename>.tar.gz | tar -xvof-

    where <filename> corresponds to the product binaries that you want to unpack.

  4. Run the setup program. You can find it in the directory where you untarred installation files.

  5. When you are asked what you would like to install, select the default, Netscape Servers.

  6. When you are asked what type of installation you would like to perform, select Custom Installation.

  7. For server root, enter a full path to the location where you want to install your server. The location that you enter must be some directory other than the directory from which you are running setup. If the directory that you specify does not exist, setup creates it for you.

  8. For Netscape Server Family, Netscape Server Family Core Components, Netscape Directory Suite, and Administration Services components, select the default (all components).

  9. For host name, select the default (which is the local host).

  10. For the user and group to run the servers as, enter the identity that you want this server to run as. For more information on the user and groups that you should use when running Netscape servers, see "Decide Which User and Group to Run Netscape Servers As (Unix only)".

  11. For configuration directory, select the default if this directory will host your o=NetscapeRoot tree. Otherwise, enter Yes. You will then be asked for the contact information for the configuration directory. If the server you are currently installing is not the configuration directory, then the configuration directory must exist before you can continue this installation.

  12. For user directory, select the default, No.

  13. For the Directory Server port, select the default (389) unless you already have another application using that port.

  14. For server identifier, enter some unique value (normally the default is sufficient). This value is used as part of the name of the directory in which the Directory Server instance is installed. For example, if your machine's host name is phonebook then this name is the default and selecting it will cause the Directory Server instance to be installed into a directory labeled slapd-phonebook.

  15. For Configuration Directory Administrator ID and password, enter the name and password that you will log in as when you want to authenticate to the console with full privileges. This userID and password was created when the configuration directory was installed.

  16. For a directory suffix, enter a distinguished name meaningful to your enterprise. This string is used to form the name of all your organization's directory entries. Therefore, pick some name that is representative of your organization. It is recommended that you pick a suffix that corresponds to your internet DNS name.

    17. For example, if your organization uses the DNS name airius.com, then enter o=airius.com here.

  17. For Directory Manager DN, enter the distinguished name that you will use when managing the contents of your directory with unlimited privileges (in former releases of the Directory Server, the Directory Manager was known as the root DN). This is the entry that you bind to the directory as when you want access control to be ignored. This distinguished name can be short and does not have to conform to any suffix configured for your directory. It also should not correspond to an actual entry stored in your directory. Examples of possible directory manager DNs are:

    18. cn=Directory Manager

    cn=root

    uid=admin

  18. For Directory Manager password, enter a value that is at least 8 characters long.

  19. For Administration Domain, enter the domain that you want this server to belong to. The name that you enter should be a unique string that is descriptive of the organization responsible for administering the domain. For information on administration domains, see "Determine the Administration Domain".

  20. For set up replication, enter Yes.

  21. For set up a supplier server, select option 2 (CIR).

  22. For changelog suffix and changelog database directory, select the defaults. This is the suffix used by the directory tree that will store all changes made to the supplier server, and the location of the database used to store these changes. These changes must be tracked so that the supplier can know how to update it's consumer servers.

  23. For Consumer Bind DN and password, enter the distinguished name on the supplier server that will have read, search, and compare privileges to the replicated tree, and to the supplier server's changelog directory. For example, if your supplier server is set up to use the directory suffix, o=airius.com, then you could use cn=replication, o=airius.com.

  24. Now you are asked if you want to set up this supplier server to also be a consumer server. Do this if you are using replication chaining. Otherwise, select the default (NONE). For information on the questions you will be asked during a consumer server setup, see "SIR Consumer Server Installs on Unix" or "CIR Consumer Server Installs on Unix".

  25. For sample entries, select the default No.

  26. For import an LDIF file, enter the full path to an LDIF file if you have one available. Otherwise, enter the word suggest. Suggest creates a simple directory tree that conforms to Netscape's recommended directory structure.

  27. For disable schema checking, select the default unless you think you may have a problem with old schema. It is strongly recommended that you clean up your directory schema before you import your LDIF to the Directory Server. Further, you should NOT run a production Directory Server with schema checking turned off.

  28. For administration port number, enter a value that is not in use. Be sure to record this value.

  29. For the IP address to bind to, select the default unless you want the Administration Server to listen to some other IP address (this may be necessary for some multi-homed systems). If so, then enter that other IP address.

  30. For Server Administrator ID, enter the user ID and password that you will use to authenticate to the Administration Server when the Directory Server is not running. For best results, this user ID/password pair should be the same as the user ID/password that you specified for the Configuration Directory Administrator.

  31. For the user you want to run the Administration Server as, enter Root. This is the default. For information on why you should run the Administration Server as root, see "Decide Which User and Group to Run Netscape Servers As (Unix only)".
The server is then installed and started. You still must initialize your consumer server(s) from the supplier server's directory tree. See the Netscape Directory Server Administrator's Guide for information on consumer creation.

CIR Supplier Server Installs on Windows NT

  1. Log in as administrator.

  2. If you have not already done so, download the product binaries file to the to the machine on which you want to install the server.

  3. Unzip the product binaries files and run the setup program.

  4. When you are asked what you would like to install, select the default, Netscape Servers.

  5. When you are asked what type of installation you would like to perform, select Custom Installation.

  6. For server root, enter a full path to the location where you want to install your server. The location that you enter must be some directory other than the directory from which you are running setup. If the directory that you specify does not exist, setup creates it for you.

  7. For Netscape Server Family Core Components, Netscape Directory Suite, and NT Synchronization Service, select all the components except for the NT Synchronization Service. (NT Synchronization Service installation is described separately in Chapter  5, "Installing and Configuring the Synch Service."

  8. For configuration directory, select the default. However, if this directory will not host your o=NetscapeRoot tree then select "Use existing configuration Directory Server." If you select this option, then the configuration directory must exist before you can continue this installation.

  9. For Directory to store data, select the default ("Store data in this Directory Server.")

  10. For server identifier, enter some unique value (normally the default is sufficient). This value is used as part of the name of the directory in which the Directory Server instance is installed. For example, if your machine's host name is phonebook then this name is the default and selecting it will cause the Directory Server instance to be installed into a directory labeled slapd-phonebook.

  11. For a directory suffix, enter a distinguished name meaningful to your enterprise. This string is used to form the name of all your organization's directory entries. Therefore, pick some name that is representative of your organization. It is recommended that you pick a suffix that corresponds to your internet DNS name.

    12. For example, if your organization uses the DNS name airius.com, then enter o=airius.com here.

  12. For the Directory Server port, select the default (389) unless you already have another application using that port.

  13. For Configuration Directory Administrator ID and password, enter the name and password that you log in as when you want to authenticate to the console with full privileges.

  14. For Administration Domain, enter the domain that you want this server to belong to. The name that you enter should be a unique string that is descriptive of the organization responsible for administering the domain. For information on administration domains, see "Determine the Administration Domain".

  15. For Directory Manager DN, enter the distinguished name that you will use when managing the contents of your directory with unlimited privileges (in former releases of the Directory Server, the Directory Manager was known as the root DN). This is the entry that you bind to the directory as when you want access control to be ignored. This distinguished name can be short and does not have to conform to any suffix configured for your directory. It also should not correspond to an actual entry stored in your directory. Examples of possible directory manager DNs are:

    16. cn=Directory Manager

    cn=root

    uid=admin

  16. For Directory Manager password, enter a value that is at least 8 characters long.

  17. For Configure server for replication, select "A supplier that will have updates pulled from it by another server (CIR)".

  18. For changelog suffix and changelog database directory, select the defaults. This is the suffix used by the directory tree that will store all changes made to the supplier server, and the location of the database used to store these changes. These changes must be tracked so that the supplier can know how to update it's consumer servers.

  19. For Consumer DN Settings, select Yes. This causes an entry to be created on your server that has read, search, and compare privileges for the change log directory and the replicated tree. Your consumer server(s) will use this DN when pulling updates from this supplier server.

  20. For Sample organizational structure, select the default. This causes a simple directory tree to be created for you.

  21. For Populate Database, select "Populate with custom database" if you have an LDIF file that you want to use to populate your directory. Otherwise, select the default ("Don't populate").

  22. For disable schema checking, select the default unless you think you may have a problem with old schema. It is strongly recommended that you clean up your directory schema before you import your LDIF to the Directory Server. Further, you should NOT run a production Directory Server with schema checking turned off.

  23. For administration port number, enter a value that is not in use. Be sure to record this value.

  24. For Administration Server IP Address, select the default unless you want the Administration Server to listen to some other IP address (this may be necessary for some multi-homed systems). If so, then enter that other IP address.

  25. For Administration Server Authentication, enter the user ID and password that you will use to authenticate to the Administration Server when the Directory Server is not running. For best results, this user ID/password pair should be the same as the user ID/password that you use for the Configuration Directory Administrator.
The server is then installed and started. You still must initialize your consumer server(s) from the supplier server's directory tree. See the Netscape Directory Server Administrator's Guide for information on consumer creation.


Installing the Stand-Alone Netscape Console
To install the stand-alone Netscape Console:

  1. If you have not already done so, download the product binaries file to the to the machine on which you want to install the console.

  2. On Unix systems, unpack the product binaries file using the following command:

    3. # gzip -dc <filename>.tar.gz | tar -xvof-

    where <filename> corresponds to the product binaries that you want to unpack.

    On Windows NT systems, unzip the product binaries files.

  3. Run the setup program. You can find it in the directory where you untarred the installation files.

  4. When you are asked what you would like to install, select option 2, Netscape Console.

  5. For installation location, enter a full path to the location where you want to install the console. The location that you enter must be some directory other than the directory from which you are running setup. If the directory that you specify does not exist, setup creates it for you.
To start the console, go to the console's installation location and run the startconsole program.
 

© Copyright 1999 Netscape Communications Corporation, All Rights Reserved.