Complete Contents
Introduction
Chapter 1 Preparing for Installation
Chapter 2 Using Express and Typical Install
Chapter 3 Using Custom Install
Chapter 4 Silent Installation
Chapter 5 Installing and Configuring the Synch Service
Chapter 6 Upgrading and Migrating the Directory Server
Chapter 7 Troubleshooting
Previous Next Contents Index


Chapter 1 Preparing for Installation

Before you begin installing the Netscape Directory Server, you should verify that the systems on which you plan to install the software meet the minimum product requirements. In addition, you should understand what the various Directory Server components are and the order in which they should be installed. It is also a good idea to plan how you want to configure the software components before you begin the installation process.

This chapter contains information to help you prepare for installation, in the following sections:

The Netscape Directory Server Deployment Guide contains basic directory concepts as well as planning tips and guidelines that will help you successfully deploy and install your directory service. You should read that manual before proceeding with the installation process.


Computer System Requirements
Before you can install the Netscape Directory Server, you must make sure you have met the minimum hardware and operating system requirements. The basic minimum requirements are as follows:

The currently supported operating system version numbers and patch requirements can be found at the following URL:

http://home.netscape.com/eng/server/directory/4.1/installation.html


Installation Privileges
It is recommended that you install Directory Server as root (under Unix) or administrator (under NT). Root privileges are required for Directory Server installations if you plan to use the default port numbers (which are less than 1024).


Installation Components
The Netscape Directory Server product contains four separate software components as follows:

The order in which you install and configure the various components depends on whether you are performing a new installation or an upgrade. See "Installation Process Overview" for details.


Configuration Decisions
During Directory Server installation, you will be prompted for basic configuration information. You should decide how you are going to configure these basic parameters before you begin the installation process. You will be prompted for some or all of following information (depending on the type of installation that you decide to perform):

Choose Unique Port Numbers

Port numbers can be any number from 1 to 65535. Keep the following in mind when choosing a port number:

For information on how to set up LDAPS communications for your Directory Server, see the Netscape Directory Server Administrator's Guide.

Create a New Server Root

Your server root is the directory where you install your Netscape servers. In the Netscape Directory Server documentation, it is referenced as <NSHOME>.

The server root must meet the following requirements:

By default, the server root directory is

Decide Which User and Group to Run Netscape Servers As (Unix only)

For security reasons, it is always best to run Unix-based production servers with normal privileges. That is, you do not want to run the Directory Server with root privileges. However, you will have to run the Administration Server with root privileges if you want to use the standard Directory Server ports.

You must therefore decide what user accounts you will use for the following purposes:

For sites that are installing multiple Netscape Servers, consider installing each server under a unique user name (such as uid slapd for Directory Server, or uid msg for Messaging Server). Doing this can help you with general system administration. However, you should use a common group for all Netscape servers, such as gid Netscape, to ensure that files can be shared between servers when necessary.

Before you can install the directory and the Administration Servers, you must make sure that these user and group accounts exist on your system.

Defining Authentication Entities

As you install the Netscape Directory Server and the Administration Server, you will be asked for various user names, distinguished names (DN), and passwords. This list of login and bind entities will differ depending on the type of installation that you are performing:

Determine your Directory Suffix

A directory suffix is the directory entry that represents the first entry in a directory tree. You will need at least one directory suffix for the tree that will contain your enterprise's data. Netscape recommends that you select a directory suffix that corresponds to the DNS host name used by your enterprise. For example, if your organization uses the DNS name of airius.com, then select a suffix of o=airius.com.

For more information on suffixes and directory trees, see the Netscape Directory Server Deployment Guide.

Determine the Location of the Configuration Directory

All 4.x Netscape servers use an instance of the Directory Server to store configuration information. This information is stored in the o=NetscapeRoot directory tree. Your configuration directory is the Directory Server that contains the o=NetscapeRoot tree used by your Netscape servers.

If you are installing the Directory Server only to support other Netscape servers, then that Directory Server is your configuration directory. If you are installing the Directory Server to use as part of a general directory service, then you will have multiple Directory Servers installed in your enterprise and you must decide which one will host the o=NetscapeRoot tree. You must make this decision before you install any 4.x Netscape servers (including Netscape Directory Server).

For ease of upgrades, it is recommended you use a Directory Server instance that is dedicated to supporting the o=NetscapeRoot tree; this server instance should perform no other function with regard to managing your enterprise's directory data. Also, do not use port 389 for this server instance because doing so could prevent you from installing a Directory Server on that host that can be used for management of your enterprise's directory data.

Because the configuration directory normally experiences very little traffic, you can allow its server instance to coexist on a machine with another, more heavily loaded, Directory Server instance. However, for very large sites that are installing a large number of Netscape servers, you may want to dedicate a low-end machine to the configuration directory so as to not hurt the performance of your other production servers. Netscape server installations result in write activities to the configuration directory. For large enough sites, this write activity could result in a short-term performance hit to your other directory activities.

Also, as with any directory installation, consider replicating the configuration directory to increase availability and reliability. See the Netscape Directory Server Deployment Guide for information on using replication and DNS round robins to increase directory availability.

WARNING. Corrupting the configuration directory tree can result in the necessity of reinstalling all other Netscape servers that are registered in that configuration directory. Remember the following guidelines when dealing with the configuration directory:

  1. Always back up your configuration directory after you install a new Netscape server.

  2. Never change the hostname or portnumber used by the configuration directory.

  3. Never directly modify the configuration directory tree. Only the setup program for the various Netscape servers should ever modify the configuration.
Determine the Location of the User Directory

Just as the configuration directory is the Directory Server that is used for Netscape server administration, the user directory is the Directory Server that contains your enterprise's data. That is, this is the Directory Server that contains the information that you want the Directory Server to store.

For most directory installations, the user directory and the configuration directory should be two separate server instances. These server instances can be installed on the same machine, but for best results you should consider placing the configuration directory on separate physical machine.

Between your user directory and your configuration directory, it is your user directory that will receive the overwhelming percentage of the directory traffic. For this reason, you should give the user directory the greatest computing resources. Because the configuration directory should receive very little traffic, it can be installed on a machine with very low-end resources (such as a minimally-equipped Pentium).

Also, you should use the default directory ports (389 and 636) for the user directory. If your configuration directory is managed by a server instance dedicated to that purpose, you should use some non-standard port for the configuration directory.

You can not install a user directory until you have installed a configuration directory somewhere on your network.

Determine the Administration Domain

The administration domain allows you to logically group Netscape servers together so that you can more easily distribute server administrative tasks. A common scenario is for two divisions in a company to each want control of their individual Netscape servers. However, you may still want some centralized control of all the servers in your enterprise. Administration domains allow you to meet these conflicting goals.

Administration domains have the following qualities:

Typical and Custom Installation ask you to identify the administration domain that the server will belong to. For many installations, you can have just one administration domain. In this case, pick a name that is representative of your organization.

For other installations, you may want different domains because of the demands at your site. In this latter case, try to name your administration domains after the organizations that will control the servers in that domain.

For example, if you are an ISP and you have three customers for whom you are installing and managing Netscape servers, create three administration domains each named after a different customer.


Installation Process Overview
After you make decisions about which components to install and how to configure the components, you are ready to begin installing. The installation process varies depending on whether you are performing a new installation or upgrading from a previous version of the Directory Server. In both cases, there is a specific order you should follow when installing components. The following sections outline the process for each method.

New Installation Process

The Directory Server allows you to install in four basic ways:

Beyond determining which type of installation you should use, the process for installing Netscape Directory Server is as follows:

  1. Plan your directory service. By planning your directory tree in advance, you can design a service that is easy to manage and easy to scale as your organization grows. For guidance on planning your directory tree, refer to the Netscape Directory Server Deployment Guide.

  2. Install your Directory Server as described later in this manual.

  3. Create the directory tree. You do not have to populate your entire tree now; however, you should create the basic structure for your tree, including all major branch points. For information about the different methods of creating a directory entry, see "Creating Directory Entries" in the Netscape Directory Server Deployment Guide or see "Creating a Directory Tree".

  4. Create additional Directory Server instances. These additional Directory Server instances will be your consumer servers. Netscape recommends that you create at least one consumer server.

  5. If you want to maintain Windows NT user and group information in your Netscape directory service, you must install and configure the NT Synchronization Service. See Chapter  5, "Installing and Configuring the Synch Service," for instructions.
Upgrade and Migration Processes

When upgrading or migrating your directory service, you should use the following sequence when installing Directory Server software components:

  1. Upgrade all of your consumer servers.

  2. Upgrade your supplier server.

  3. If you are using the NT Synchronization Service, migrate or upgrade it after your supplier and consumer servers. See Chapter  5, "Installing and Configuring the Synch Service," for instructions.
The upgrade and migration processes are described in detail in Chapter  6, "Upgrading and Migrating the Directory Server."
 

© Copyright 1999 Netscape Communications Corporation, All Rights Reserved.