Sun Java(TM) System Directory Server 5 2004Q2 �z��n |
�� 2 ��
�z�ؿ�������Q�צp��ϥ� Directory Server Console �M LDAP ��O�椽�ε{���z�z���ؿ�e�C�åB�]�y�z�p��ϥο�Ϊ��ݩʥ[�K�\���x�s�ݩʡA�H�Φp��ϥ� DSML �s��z���ؿ�C�b�W���z���ؿ�G�p�ɡA3�Ӵy�z�ۤv���ؿ�ҭn�]�t����������S�x�C�إ߶��ؤέק�w�]���c�e�A�Х�\Ū�mDirectory Server Deployment Planning Guide�nChapter 2 �� "Planning and Accessing Directory Data"�C
�������]�z�w�A�ѤF�@�� LDAP ���c�Ψ�w�q���������O�M�ݩʪ��ѡC�p�� Directory Server �Ҵ��Ѫ����c�ΩҦ��������O�P�ݩʪ��w�q²���A�аѾ\�mDirectory Server Administration Reference�n���� "Object Class Reference" �M "Attribute Reference" �U���C
�z�����w�q�A�?�s����� (ACI) �~��ק�z���ؿ�C�p�ݸԲӸ�T�A�аѾ\�� 6 ���u�z�s���v�C
�����]�t�U�C���`�G
�պA����Directory Server �N�Ҧ����պA��T�x�s�b�U�C�ɮפ��G
ServerRoot/slapd-serverID/config/dse.ldif
���ɮרϥ� LDAP ��ƥ洫�榡 (LDIF)�CLDIF �O���ءB�ݩʤΨ�Ȫ���r��ܤ覡�A�ӥB�O RFC2849 (http://www.ietf.org/rfc/rfc2849) ���y�z���зǮ榡�Cdse.ldif �ɮפ��� Directory Server �պA���զ����G
Directory Server ��Ҧ��պA�]�w�ȳ��i�z�L LDAP �i��Ū�g�C�̹w�]�ȡA�ؿ� cn=config �$�u��� Administration Server ���w�q���ؿ�z�� (directory administrator) �Υؿ�z�� (directory manager) �s��C�o�Ǻz�ϥΪ̥i�H�˵�έק�պA���ءA�N�p�P��L���ؿ�ؤ@�ˡC
�z3���קK�b cn=config ���ؤU�إ߶��ءA�]���o�˪����ط|�x�s�b dse.ldif �ɮפ��A�ӳo���ɮפ������q���ت���Ʈw�@�˨㦳���վ�ʡC�]���A�p�G���\�h���� (�S�O�O�i��ݭn�g�`��s������) �x�s�b cn=config �U�A�i��|���C�į�C�M�ӡA�N�S�w���ϥΪ̶��ءA�Ҧp [�ƻs�z��] (��3�ӳs�� DN) �����x�s�b cn=config �U�ܦ��ΡA�]���o�˥i�����z�պA��T�C
�ϥΥD���x�ק�պA
��ij�z�ϥ� Directory Server Console �̤W�h�� [�պA] ���Ҩӭק�պA�C�����Ҫ����O�P��ܤ��ѥH�u�@����¦������A�i0�U�z�ֳt�B���IJv�a�]�w�պA�C���~�A�D���x�����|���z�z�պA������ʻP�ۤ��̦s�ʡC
�b�����u�ϥΥD���x...�v�{�Ǥ��|�[�H����D���x���պA�����A�o�ǵ{�ǻ���p��ϥ� [�պA] ���Ҫ����O�P��ܤ����S�w���z�u�@�C���������|�M������x�s�պA���覡�H�έ��s�Ұʦ�A�����ܧ�ͮĪ��ɾ�C
�q��O��ק�պA
�]�� cn=config �𪬤l�ؿ�i�z�L LDAP �s��A�ҥH�i�H�� ldapsearch�Bldapmodify �M ldapdelete ��O�˵�έק��A���պA�Ccn=config ���ؤΨ�U�Ҧ����س��i�Q���u�q��O��z���ءv������{�ǻP LDIF �榡�i��ק�C
��O�z�����F�ѳo�Ƕ��ت��N�q�B���ݩʪ��γ~�H�Τ��\���ȵ��C����u�q��O��...�v�{�Ǥ��|���3o�ǭ��n���Ҽ{�ƶ��A�ӵ{�Ƿ|�|�һ���z�i�H�]�w���պA���ػP�ݩʡC�p�ݩҦ��պA���ػP�ݩʪ�����y�z�A�]�A���\�Ȫ��d��A�аѾ\�mDirectory Server Administration Reference�n�C
�]���A�q�D���x�ק�պA�|��q��O��ק��[�e��C��O�A���ּƲպA�]�w�L�k�z�L�D���x�i��A�]���u���ѫ�O��{�ǡC�z�]�i�H���g�ϥΫ�O��u�㪺��O�ɡA�Q�Ϋ�O��{�DZN�պA�u�@�۰ʤơC
�ק� dse.ldif �ɮ�
dse.ldif �ɮץ]�t��A���Ұʩέ��s�ҰʮɱNŪ��ΨϥΪ��պA�C�o���ɮת� LDIF ���e�O cn=config ���ؤΨ�𪬤l�ؿ�C�u���w�˴v��ҩw�q���t�ΨϥΪ̥iŪ�g���ɮסC
�����s�覹�ɮפ��e�ӭק�պA���e��X��A�]������ij�o�ا@�k�C�z3�Ӫ��D�U�C�B�@�覡�G
�ϥΥD���x�z�����z�i�H�� Directory Server Console �W�� [�ؿ�] ���Ҥζ��ؽs�边��ܤ��ӧO�[�J�B�ק�ΧR�����ءC�p�G�n�P�ɾާ@�X�Ӷ��ءA�аѾ\�u�ϥΥD���x���j�q�@�~�v�C
�p�����Ұ� Directory Server Console �P�s��ϥΪ̤������ԲӸ�T�A�аѾ\�u�ϥ� Directory Server Console�v�C
�إߥؿ��
Directory Server Console ���Ѽƭӥi�إߥؿ�ت��ۭq�d���C�C�ӽd���O�S�w�������������O���ۭq�s�边�C�� 2-1 ��ܨC�Ӧۭq�s�边�ҥΪ��������O�C
�o�Ǧۭq�s�边�ҥ]�t�����N��Ҧ��j���ݩʡA�H�έӧO�������O�`�Ϊ����?���ݩʡC�Y�n�γo�ǽd���إ߶��ءA�Ш̷��u�ϥΦۭq�s�边�إ߶��ءv��������i��C�Y�n�إߥ���L���������ءA�аѾ\�u�إߨ�L���������ءv�C
�ϥΦۭq�s�边�إ߶���
- �b Directory Server Console �̤W�h�� [�ؿ�] ���ҤW�A�i�}�𪬥ؿ�A�H��ܭn�@���s���ؤ�����ءC
- �H�ƹ��k���@�U��A��� [�s�W] �\��?�ءA�A�q�l�\��?��ܶ��������G�ϥΪ̡B�s�աB��´���B����B�A�����O�B�K�X�����ΰѷӡC�Ϊ̡A�z�i�H�b��W��@�U�ƹ�����H��ܤ�A�A�q [����] > [�s�W] �\��?��ܶ��������C�X�{�z��ܤ������������ۭq�s�边��ܤ��C
�ۭq�s�边�����榳�@�s�ꪺ���ҡA�C�Ӽ��Ҫ����h��ܦb�k��C�̹w�]�ȡA�Ҧ��ۭq�s�边�}�Үɷ|��̤ܳW�h�� [�ϥΪ�] �� [�@��] ���ҡA�W���]�t�s���ت��W�٩M�������C
�Ҧp�A�U����ܨϥΪ̶��ت��ۭq�s�边�G
�� 2-1 Directory Server Console - �ϥΪ̶��ت��ۭq�s�边
- �b�ۭq�s�边����줤���z�n���Ѫ��ݩʿ�J�ȡC�Z�O���W�ٮǦ��P�� (*) ���j���ݩʳ�������J�ȡF��L���h�i�H�O�d�ťաC�b���\�h���Ȫ���줤�A�z�i�H�� Return �H�9j�ȡC
�p�ݦU�����������ۭq�s�边������S�w���i�@�B����U�A�Ы�@�U [����] ��s�C�p�� [�ϥΪ�] �P [��´���] �s�边�W [�y��] ���Ҫ�����A�аѾ\�u�]�w�y���䴩���ݩʡv�C
�p�ݫإ߸s�աB����ΪA�����O���ت��i�@�B����A�аѾ\�� 5 ���u�z����M����v�C�p�ݫإ߱K�X����������A�аѾ\�� 7 ���u�z�ϥΪ̱b��M�K�X�v�C�p�ݫإ߰ѷӪ�����A�аѾ\�u�]�w�ѷӡv�C
- ��@�U [�T�w] �إ߷s�����ءA����ۭq�s�边��ܤ��A�s���إX�{�b�𪬥ؿ�C
- �ۭq�s�边��ܤ��ä��|���ӧO�������O���Ҧ�����ݩʴ������C�p�G�Ʊ�[�J����ܦb�ۭq�s�边�W������ݩʡA�Ш̷��u�H�зǽs�边�קﶵ�ءv��������i��C
�إߨ�L����������
�Ш̷ӥH�U�B�J����b�� 2-1 ���C�X���������O�إ߶��ءC���{�Ǥ]�i�Ψӫإߥؿ�c���w�w�q�����ۭq�������O�����ءG
- �b Directory Server Console �̤W�h�� [�ؿ�] ���ҤW�A�i�}�𪬥ؿ�A�H��ܭn�@���s���ؤ�����ءC
- �H�ƹ��k���@�U��A�A�q�l�\��?��� [�s�W] > [��L] ���ءC�Ϊ̡A�z�i�H�b��W��@�U�ƹ�����H��ܤ�A�A��� [����] > [�s�W] > [��L] �\��?�ءC
�X�{ [�s�W����] ��ܤ��C
- �b [�s�W����] ��ܤ��������O�M�椤�A��ܩw�q�s���ت��������O�A�A��@�U [�T�w]�C
�p�G��ܦC�b�� 2-1 �����������O�A�N��ܹ�3���ۭq�s�边 (�Ѿ\�u�ϥΦۭq�s�边�إ߶��ءv)�C�b��L���p���A�h����ܼзǽs�边�C
- �إ߷s���خɡA�зǽs�边���|���z��ܪ��������O���Ҧ����n���ݩʦU���Ѥ@�����C�Ҧ����n�ݩʳ�������J�ȡC������즳�зǪ��w�d��m�ȡA�Ҧp New�A�z3�ӥι�z�����ئ��N�q���Ȩ�N�w�d��m�ȡC
- �Y�n�w�q�ҿ磌�����O���\����L�ݩʡA�z������T�[�J�C�Y�n������ݩʿ�J�ȡG
- ��@�U [�[�J�ݩ�] ��s�H��ܤ��\���ݩʲM��C
- �q [�[�J�ݩ�] ��ܤ���ܤ@�Φh���ݩʡA�A��@�U [�T�w]�C
- �b�зǽs�边���s�ݩʦW�ٮǿ�J�ȡC
�p�����ܤ���L����i�@�B���ԲӸ�ơA�аѾ\�u�H�зǽs�边�קﶵ�ءv�C
- �̷ӹw�]�A�|��ܨ䤤�@�ӥ��n�ݩʧ@���R�W�ݩʡA�ӥ��n�ݩʷ|�X�{�b�зǽs�边������ܪ����� DN ���C�Y�n�ܧ�R�W�ݩʡG
- �b�зǽs�边����@�U [�T�w]�A�H�x�s�s���ءC
�s���ئb�𪬥ؿ���ܬ�����l���C
�Φۭq�s�边�קﶵ��
���C�b�� 2-1 �����������O�A�z�i�H��ܨϥι�3���ۭq�s�边�μзǽs�边�ӽs�趵�ءC�ϥΦۭq�s�边�A�i�H�ܮe��a�s��̱`�Ϊ����A�ӥB�����|0�U�z�������ݩ� (�Ҧp����ΪA�����O�w�q�����ݩ�) �w�q�ȡC
�зǽs�边�i��z�ﶵ�ذ����i�����@�~�A�Ҧp�[�J�������O�B�[�J���\���ݩʥH�γB�z�h�����ݩʵ��C�Y�n�H�зǽs�边�s�趵�ءA�аѾ\�u�H�зǽs�边�קﶵ�ءv�C
�Ƶ�
�ۭq�s�边�u�i�Ψӽs��C�b�� 2-1 �����������O�C�ܩ�]�t��L���c�������O������ (�Ҧp�q inetorgperson �~�ӱo�Ӫ��ۭq���O)�A�h�u��z�L�зǽs�边�i��s��C
�Y���ذ��F�C�ܪ��������O���~�٥]�t���U�������O�A�h�Ӷ��إi�H�Φۭq�s�边�i��z�C��ۭq�s�边������ܻ��U���O�ҩw�q������ݩʡC�p�ݻ��U�������O���w�q�A�аѾ\�mDirectory Server Administration Reference�nChapter 8 �� "Object Classes"�C
�Ұʦۭq�s�边
�Y�n�s���� 2-1 ���ҦC�������O�����ءG
- �b Directory Server Console �̤W�h [�ؿ�] ���ҤW�A�i�}�𪬥ؿ�A�H��ܭn�s�誺���ءC
- �s���U���ءC���X�Ӵ%N�ʧ@�]�i�H�Ұʶ��ت��ۭq�s�边�G
- �H�ƹ��k���@�U���ءA�A��� [�H�ۭq�s�边�s��] ���ءC
- �H�ƹ������@�U�H��ܶ��ءA�A��� [����] > [�H�ۭq�s�边�s��] �\��?�ءC
- �H�ƹ������@�U�H��ܶ��ءA�A�ϥ���L�ֳt�� Control-P�C
��ܶ��ت��������O�ҨϥΪ��ۭq�s�边�C�Ҧp�A�� 2-1 ����� [�ϥΪ�] ���ت��ۭq�s�边�C
- �̹w�]�ȡA�Ҧ��ۭq�s�边�}�Үɷ|��̤ܳW�h�� [�ϥΪ�] �� [�@��] ���ҡA�W���]�t�s���ت��W�٩M�������C�w��z�n�ק諸�ݩʡA�b�ۭq�s�边����줤�s��β����ȡC���W�ٮǥH�P�� (*) �Хܪ��ݩ�j���ݩʡA�z�i�H�ק��L�k�����o���ݩʪ��ȡC��L���h�i�H�O�d�ťաC�b���\�h���Ȫ���줤�A�z�i�H�� Return �H�9j�ƭȡC
����椤����L���ҡA�H�ק��3���O�W���ȡC�p�ݦU�����������ۭq�s�边������S�w���i�@�B����U�A�Ы�@�U [����] ��s�C
�p�� [�ϥΪ�] �P [��´���] �s�边�W [�y��] ���Ҫ�����A�аѾ\�u�]�w�y���䴩���ݩʡv�C�b�� 7 ���u�z�ϥΪ̱b��M�K�X�v������F�ϥΪ̻P�s�ն��ت� [�b��] ���ҤW���U���C���uDirectory Server �P�B�ƪA�ȡv���ѤF [NT �ϥΪ�] �P [Posix �ϥΪ�] ���ҡA�p�ݸԲӸ�ơA�Ь��� Sun �N��C
�p�ݭק�s�աB����P�A�����O���ت��i�@�B����A�аѾ\�� 5 ���u�z����M����v�F�p�ݭק�K�X����������A�аѾ\�� 7 ���u�z�ϥΪ̱b��M�K�X�v�C�p�ݭק�ѷӪ�����A�аѾ\�u�]�w�ѷӡv�C
- ��@�U [�T�w] �x�s���ت��ܧ�A����ۭq�s�边��ܤ��C�p�G�ק�F�R�W�ݩ� (�Ҧp�ϥΪ̶��ت��@��W��)�A�𪬥ؿ�N�ϬM���ܧ�C
�]�w�y���䴩���ݩ�
�ϥΪ̻P��´��춵�ت��ۭq�s�边�����Ѱ�ڤƥؿ�y���䴩�C
- ���u�Ұʦۭq�s�边�v�ҭz�}�ұz�����ت��ۭq�s�边�C
- ��@�U���椤�� [�y��] ���ҡC
- ���ϥΪ̶��ءA�z�i�H�ΤU�Ԧ��M��]�w�ߦn���y���C
- ���ϥΪ̻P��´��춵�ءA�z�i�H�b�M����ܪ����y������w��줤��J���a�ƪ��ȡC��ܻy���A�M��H�ӻy����J�@�Φh�ӭȡC�w�q���a�ƭȤ���A�M�椤���y���W�ٷ|�H������ܡC
�Y�ǻy���]���o�����A�z�i�H�b�䤤��J���a�ƭȪ��y����ܪk�C
- ��@�U [�T�w] �x�s���ت��ܧ�A����ۭq�s�边��ܤ��C
�H�зǽs�边�קﶵ��
�зǽs�边�i�ھڵn�J�D���x�ҥΪ��s�� DN�A���\�z�d�ݶ��ت��Ҧ��iŪ���ݩʡA�ýs��i�g�J�ݩʡC���i��z�[�J�ò����ݩʡB�]�w�h�����ݩʥH�κz���ت��������O�C�[�J�ݩʮɡA�z�i�H�w�q�G�i���ݩʻP�y���䴩���l���O�C
�Ұʼзǽs�边
�Y�n���ؿ��رҰʼзǽs�边�G
- �b Directory Server Console �̤W�h�� [�ؿ�] ���ҤW�A�i�}�𪬥ؿ�A�H��ܭn�s�誺���ءC
- �H�ƹ��k���@�U���ءA�A��� [�H�зǽs�边�s��] ���ءC���X�Ӵ%N�ʧ@�]�i�H�Ұʶ��ت��ۭq�s�边�G
- �H�ƹ������@�U�H��ܶ��ءA�A��� [����] > [�μзǽs�边�s��] �\��?�ءC
- �p�G���إ��C�b�� 2-1 ���A�h�s���U���ءC�̹w�]�ȡA�S���ۭq�s�边���������O�|�ϥμзǽs�边�C
��ܦp�U�ϩҥܪ��зǽs�边�C
�� 2-2 Directory Server Console - �зǽs�边
�b�зǽs�边���A���ت��ݩʨ̦r�6��DZƦC�A�ӥB�C���ݩʭȧ��U���@�Ӥ�r���C�Ҧ��ݩʡA�]�A��Ū�P�@�~�ݩʳ��|��ܥX�ӡC�k�䪺����i��z�ק�s�边������ܡA�H�νs���ݩʲM��C
- �Ϊ̡A�z�i�H�� [�˵�] ��������ק�зǽs�边����ܡG
- ��� [����ݩʦW��] �ﶵ�H�˵��ݩʳ̪�b���c���w�q���W�١C�ݩʲM��N���s�ƦC�A�H�̦W�٦r�6��DZƦC�C
- ��� [����ݩʴy�z] �ﶵ�N�ݩʨ̴%N�W�ٱƦC (�p�G���b���c���w�q�%N�W��)�C�%N�W�ٳq�`�i�H��M���a�y�z�ݩʡC�ݩʲM��N���s�ƦC�A�H�̷Ӵy�z�r�6��DZƦC�C
- ����� [����ܧt�Ȫ��ݩ�] �֨���i�C�X���ت��������O���ѵ��c��T���\���Ҧ��ݩʡC�p�G���إ]�t extensibleObject �������O�A�Ҧ��ݩʳ��O��t���\���A��|�C�X�ӡC�w�]���p�U�u��ܦ��w�q�Ȫ��ݩʡC
- ��ܩΨ���� [��� DN] �֨���A�H�t��O�_�b�ݩʲM��U��ܶ��ت���O�W�١C
- [���s��z] ��s�N�s���A���A�H�ھڶ��إثe�����e��s�Ҧ��ݩʪ��ȡC
�U�C�U�`�y�z�]�w�ݩʭȡB�z�������O���ܧةR�W�ݩʪ�����覡�C
�ק��ݩʭ�
- ���u�Ұʼзǽs�边�v�ҭz�}�Ҽзǽs�边�C
- �����ݩʲM��A�ë�@�U�n�ק諸�ȡC
����ݩʷ|�ϥ���ܡA�ӥB�b�]�t���Ȫ���r��줺�|�X�{�s���СC
- �ϥηƹ��P��L�N��r�s�覨�ҭn���ȡC�z�i�H�Ψt�ΰŶKï�b����줤�ƻs�B�ŤU�ζK�W��r�C
�p�G�L�k�s���r��쪺���e�A����ݩʬO��Ū���A�αz�S���ק��ݩʪ��g�J�v���C
- �s���L���ȡA�Ψ̻ݭn�惡���ذ���L�ק�A�A��@�U [�T�w] �x�s�ܧ�A����зǽs�边�C
�s��h�����ݩ�
�Y�ݩʦb�ؿ�c���w�q���h���ȡA�h���ݩʦb�зǽs�边���i�H���h�����C�p�ݧ�h��T�A�аѾ\�� 9 ���u����ؿ�c�v�C
�Y�n���h�����ݩʥ[�J�s�ȡG
- ���u�Ұʼзǽs�边�v�ҭz�}�Ҽзǽs�边�C
- �����ݩʲM��A�ë�@�U�ݩʩΨ䤤�@�ӭȡC����ݩʷ|�ϥ���ܡA�ñҰ� [�[�J��] ��s�C�p�G���Ұʦ���s�A��ܿ���ݩʤ��O�w�q���h���ȡA���ݩʬO��Ū���A�άO�z�S���ק��ݩʪ��g�J�v���C
- ��@�U [�[�J��] ��s�C�M�椤�ݩʦW�ٮǥX�{�s���ťդ�r���C
- �b�s����r��줤��J���ݩʪ��s�ȡC�z�i�H�Ψt�ΰŶKï�b����줤�ƻs�B�ŤU�ζK�W��r�C
- �s���L���ȡA�Ψ̻ݭn�惡���ذ���L�ק�A�A��@�U [�T�w] �x�s�ܧ�A����зǽs�边�C
�Y�n�����h�����ݩʪ��ȡG
- ���u�Ұʼзǽs�边�v�ҭz�}�Ҽзǽs�边�C
- �����ݩʲM��A�ë�@�U�n�������S�w�ȡC����ݩʷ|�ϥ���ܡA�ñҰ� [�R����] ��s�C�p�G���Ұʦ���s�A��ܿ���ݩʬO��Ū���A�αz�S���ק��ݩʪ��g�J�v���C
- ��@�U [�R����] ��s�C�N�|�����]�t���Ȫ���r���C
- �s���L���ȡA�Ψ̻ݭn�惡���ذ���L�ק�A�A��@�U [�T�w] �x�s�ܧ�A����зǽs�边�C
�[�J�ݩ�
�b�z�i�N�ݩʥ[�J���ؤ����e�A�Ӷ��إ����w�g�]�t�ݭn�Τ��\�ݩʪ��������O�C�p�ݸԲӸ�T�A�аѾ\�u�z�������O�v�P�� 9 ���u����ؿ�c�v�C
�Y�n�N�ݩʥ[�J���ؤ��G
- ���u�Ұʼзǽs�边�v�ҭz�}�Ҽзǽs�边�C
- �T�w�w�֨� [����ܧt�Ȫ��ݩ�] �ﶵ�C
- ��@�U [�[�J�ݩ�] ��s�H��ܥ]�t�ݩʲM�檺��ܤ��C���M��u�]�t�w�ﶵ�ةҩw�q���������O���\���ݩʡC
- �b [�[�J�ݩ�] ��ܤ���ܭn�[�J���@�Φh���ݩʡC
- �Ϊ̡A�z�i�H�q��ܤ��W�誺�U�Ԧ��M�椤��ܤU�C��Ӥl�����Ψ䤤���@�G
- ����ݩʤΨ��Τl�������@�U [�T�w]�C�ݩʷ|�̦r�6��ǥ[�J�зǽs�边���M�椤�C
- �b�s�ݩʦW�ٮǪ��ťդ�r��줤��J���ݩʪ��s�ȡC�z�i�H�Ψt�ΰŶKï�b����줤�ƻs�B�ŤU�ζK�W��r�C
- �s���L���ȡA�Ψ̻ݭn�惡���ذ���L�ק�A�A��@�U [�T�w] �x�s�ܧ�A����зǽs�边�C
�����ݩ�
�Y�n�q���ؤ������ݩʤΨ�Ҧ��ȡG
- ���u�Ұʼзǽs�边�v�ҭz�}�Ҽзǽs�边�C
- �����ݩʲM��A�ë�@�U�n�������ݩʦW�١C����ݩʷ|�ϥ���ܡA�ñҰ� [�R���ݩ�] ��s�C�p�G���Ұʦ���s�A��ܿ���ݩʬO��Ū���A�αz�S���ק��ݩʪ��g�J�v���C
�Ƶ�
�зǽs�边���\�z�����i�����ݩʩw�q���������O�һݪ��ݩʡC�p�G�x��x�s�S�����n�ݩʪ����ءA��A���N�^3�������O�H�W�C�нT�{�z�����إ]�t���w�q���Ҧ��������O�����n�ݩʡC
- ��@�U [�R���ݩ�] ��s�C�N�|�����ݩʤΨ�Ҧ���r���ȡC
- �s���L���ȡA�Ψ̻ݭn�惡���ذ���L�ק�A�A��@�U [�T�w] �x�s�ܧ�A����зǽs�边�C
�z�������O
���ت��������O�O�Ѧh���Ȫ� objectclass �ݩʩҩw�q�C�ק惡�ݩʮɡA�зǽs�边�|���ѯS�?��ܤ��A0�U�z�z�w�q���������O�C
�Y�n�����إ[�J�������O�G
- ���u�Ұʼзǽs�边�v�ҭz�}�Ҽзǽs�边�C
- �����ݩʲM��A�ÿ�� objectclass �ݩʡC�N�|�Ұ� [�[�J��] ��s�C�p�G���Ұʦ���s�A��ܱz�S���v���A�L�k�ק惡���ت��������O�C
- ��@�U [�[�J��] ��s�C
�X�{ [�[�J�������O] ��ܤ��C������ܱz�i�[�J���ؤ����������O�M��C
- �п�ܱz�Q�n�[�J�����ؤ����@�Φh�Ӫ������O�A�A��@�U [�T�w]�C�z�ҿ�������O�Y��ܦb objectclass �ݩʭȲM�椤�C
- �p�G�s�������O�֦��٤��s�b���ؤ������n�ݩʡA�зǽs�边�N�۰�0�z�[�J�C�z�������Ҧ����n�ݩʴ��ѭȡC
- �s���L���ȡA�Ψ̻ݭn�惡���ذ���L�ק�A�A��@�U [�T�w] �x�s�ܧ�A����зǽs�边�C
�Y�n�q���ؤ������������O�G
- ���u�Ұʼзǽs�边�v�ҭz�}�Ҽзǽs�边�C
- �����ݩʲM��A�ë�@�U�n������ objectclass �ݩʪ��S�w�ȡC�p�G���c���\������������O�A�ӥB�z���v���i�ק惡���ت��������O�A�N�|�Ұ� [�R����] ��s�C
- ��@�U [�R����] ��s�C�N�|�����S�w���������O�C
��z�����������O�ɡA�зǽs�边�N�۰ʲ�����l�������O�����\�Υ��n������ݩʡC�p�G�����R�W�ݩʤ��@�A�N�۰ʿ�ܥt�@�өR�W�ݩʡA�ӥB�D���x�N�q���z�T�{���ܧ�C
- �s���L���ȡA�Ψ̻ݭn�惡���ذ���L�ק�A�A��@�U [�T�w] �x�s�ܧ�A����зǽs�边�C
���s�R�W����
�R�W�ݩʬO�X�{�b���ؿ�O�W�� (DN) �����ݩʭȰt��C�R�W�ݩʬO�q���ز{�����ݩʤ���ܦӨӡC�ק�R�W�ݩʧY�i���s�R�W���ءG
- ���u�Ұʼзǽs�边�v�ҭz�}�Ҽзǽs�边�C
[�ܧ�] ��s�Ǫ���r�|��ܦ����إثe���R�W�ݩʡC�p�G��� [��� DN] �֨���A�z�i�H�b�ݩʭȲM��U�ݨ� DN �����o���ݩʡC
- ��@�U [�ܧ�] ��s�C�p�G���Ұʦ���s�A��ܱz�S���v���A�L�k���s�R�W�����ءC
�X�{ [�ܧ�R�W�ݩ�] ��ܤ��C
- �����ݩʲM��A��ܭn��b�����ت� DN �����ݩʡC��ܩΨ�����ݩʮǪ��֨���A�H�'O�b�R�W�ݩʤ��[�J�β����ݩʡC
�b�P�@��U�U���ت� DN �����O�ߤ@���C�]���A�z������ܨ�ȩμƭȲզX�O�ߤ@���R�W�ݩʡC�p�G DN ���O�ߤ@���A��A���N�ڵ��x�s�䶵�ءC�b�D�ҤW�A�N��ϥΪ̪��Ҧ�����3�ϥάۦP���R�W�ݩʡC
- �b [�ܧ�R�W�ݩ�] ��ܤ���@�U [�T�w]�C�зǹ�ܤ�����ܷ|��ܦ����ت��s DN�C
- �s���L���ȡA�Ψ̻ݭn�惡���ذ���L�ק�A�A��@�U [�T�w] �x�s�ܧ�A����зǽs�边�C
�R���ؿ��
�Y�n�ϥ� Directory Server Console �ӧR�����ءG
- �b Directory Server Console �̤W�h�� [�ؿ�] ���ҤW�A�i�}�𪬥ؿ�A�H��ܭn���������ءC
�z�]�i�H��ܾ𪬤l�ؿ�ڸ`�I�A�H�R���ؿ��Ӥ$�C
- �H�ƹ��k���@�U���ءA�A��� [�R��] ���ءC�ƭӴ%N�ʧ@�]�|�R�����ءG
- �T�{�z�n�R�����ءA�ξ𪬤l�ؿ�Ψ�Ҧ����e�C
��A���i�ߧY�R���@�Φh�Ӷ��ءC�S���_��C�p�G�R���h�Ӷ��ءA�D���x�N��ܸ�T��ܤ��A�C�X�R�����ؼƤεo�ͪ�����~�C
�ϥΥD���x���j�q�@�~
�z�i�H�� LDIF �ɮץ[�J�h�Ӷ��ءB���V�X�@�~�ζפJ��ӧ=X�C�Y�n�ϥ� LDIF �ɮפ� Directory Server Console �[�J���ءG
- �ΥH�W�U�`����ܪ��y�k�b LDIF �ɮפ��w�q���ةΧ@�~�C�p�G�u�n�[�J���ةΪ�l�Ƨ=X�A�N���ݭn changetype ����r�A�ӥB LDIF �ɮץi�H�u�]�t���ءC�p�G�n���V�X���@�~�A�C�� DN ��᳣3�Ӹ�ۤ@�� changetype�A�ӥB��ݭn�[�W�S�w�@�~���ݩʭȡC
- �q Directory Server �D���x�פJ LDIF �ɮסC�p�ݧ�h��T�A�аѾ\�u�פJ LDIF �ɮסv�C
�p�G�n���V�X���@�~�A�ȥ������ [�פJ LDIF] ��ܤ��W�� [�ȥ[�J]�A���A���|���Ҧ� LDIF �@�~�C
�q��O��z����ldapmodify �M ldapdelete ��O�椽�ε{�����ѥ[�J�B�s��P�R���ؿ�ت�����\��C�z�i�H�Υ��̺z��A�����պA���ةM�ϥΪ̶��ؤ�����ơC�o��Ӥ��ε{���]�i�ΨӼ��g��O�ɡA�H���@�Φh�ӥؿ�j�q�z�u�@�C
ldapmodify �M ldapdelete ��O�Φb���ѦU�B���{�Ǥ��C�U�C�U�`�y�z���o�Ǻz�{�ǩһݪ��Ҧ��@�~�C��i�@�B���\��B�Ҧ�����O��ﶵ�γo�ǫ�O���Ǧ^�Ȼ����mDirectory Server Resource Kit Tools Reference�n���� Chapter 4 �� "ldapmodify" �M Chapter 5 �� "ldapdelete"�C
��O�椽�ε{������J�l�ױĥ� LDIF�A�z�i�H�����q��O���J�A�γz�L��J�ɴ��ѡC�U�`���Ѧ��� LDIF ��J����T�A�H��U�`�y�z�C�حק������� LDIF�C
���� LDIF ��J
����O�椽�ε{������ LDIF ��J�ɡA�w���O���J�B�S��r���B���c�ˬd�ζ��ت����ǻP�j�p���A���@�ǯS��Ҽ{�ƶ������O��C�Ҧ��ؿ��ƨϥ� Unicode �� UTF-8 �s�X�x�s�C�]���z���Ѫ���� LDIF ��J�]�����H UTF-8 �s�X�CLDIF �榡���ԲӴy�z�b�mDirectory Server Administration Reference�n�� Chapter 7 "LDAP Data Interchange Format Reference"���C
�b��O�椤�� LDIF ��J
ldapmodify �M ldapdelete ���ε{��Ū��z�b��O���J�� LDIF ���z����q�ɮ�Ū��O�����@�˪��覡�C��z�������ѿ�J�ɡA�п�J�ۤv�� Shell �|���Ѭ��ɮ��� (end of file�AEOF) �h�X���Ǫ��r���C
�H�U�d����ܦp�� ldapmodify ��O����J�G
prompt> ldapmodify -h host -p port -D bindDN -w password
dn:cn=Barry Nixon,ou=People,dc=example,dc=com
changetype:modify
delete:telephonenumber
^D
prompt>���F²�ƤΥi��ʡA������d�Ҥ���ܴ��ܩ� EOF ���ǡC
�ϥίS��r��
�b��O���J��O�ﶵ�ɡA�z�i�ॲ�������@�ǹ��O���Ķ���㦳�S��N�q���r���A�p�Ů� ( )�B�P�� (*)�B�ϱu (\) ���C�Ҧp�A�\�h DN �]�t�Ů�A�n�Φb�j���� UNIX Shell ���A�z�����N�ȸm����� ("") ���G
-D "cn=Barbara Jensen,ou=Product Development,dc=example,dc=com"
�̫�O���Ķ���өw�A�z3�Өϥγ������������γ~�C�p�ݧ�h��T�A�аѾ\�z���@�~�t�Τ��C
���~�A�p�G�z�ϥΥ]�t�r���� DN�A�����H�ϱu (\) �����r���C�Ҧp�G
-D "cn=Patricia Fuentes,ou=People,o=example.com Bolivia\,S.A."
�Ъ`�N�Aldapmodify ��O�᪺ LDIF ���z���O�ѫ�O��Ķ�A�ӫD�� Shell ��Ķ�A�]�����ݭn�S�?�Ҽ{�ƶ��C
���c�ˬd
�[�J�έקﶵ�خɡA�ҨϥΪ��ݩʥ����O���ؤ����������O���n�Τ��\���ݩʡA�ӥB�z���ݩʥ����]�t�P�w�q�y�k�۲Ū��ȡC
�קﶵ�خɡADirectory Server �|�b��Ӷ��ؤW��浲�c�ˬd�A�Ӥ��Ȧb�Q�ק諸�ݩʤW�i���ˬd�C�]���A�p�G���ؤ���������O���ݩʤ��ŦX���c�A�@�~���i��|���ѡC�p�ݸԲӸ�T�A�аѾ\�u���c�ˬd�v�C
�ƦC LDIF ���ت�����
�b�[�J���ت���� LDIF ��r���Ǥ��A���O�b��O��Φb�ɮפ��A��������C�b�l���e�C�p���@�ӡA���A���B�z LDIF ��r�ɡA�N�|��إߤ�A�إߤl���C
�Ҧp�A�p�G�n�b People �𪬤l�ؿ�إߤ��s�b�ؿ���ءA������C�X�N�� People �e�������ءA�A�C�X�𪬤l�ؿ���ءG
dn:dc=example,dc=com
dn:ou=People,dc=example,dc=com
...
People subtree entries
...
dn:ou=Group,dc=example,dc=com
...
Group subtree entries
...�z�i�H�ϥ� ldapmodify ��O�椽�ε{���إߥؿ��ءA��O�=X�Τl�=X���ڳ��O�S�?�ءA�����P���n���պA���ز������p�C�Y�n�[�J�s���ڧ=X�Τl�=X�Ψ����պA���ءA�аѾ\�u�q��O��إߧ=X�v�C
�z�j������
�[�J�έק�t�����j���ݩʭȪ����ثe�A��A���i�ॲ���g�L�t�m�~���o�����ءC���O�@��A���H���t��L���A�Τ�ݹw�]���ȯ�ǰe���W�L 2 MB ����ơC
�p�G�[�J�����ؤj����A�έק諸�ݩʭȤj����A��A���N�ڵ����@�~�A�åߧY��s�u�C�Ҧp�A�b���ت��@�Φh���ݩʤ��p�G���h�C�餺�e���G�i���ơA�N�i��W�L������C
�ӥB�A�w�q�j���R�A�s�ժ����إi��]�t�Ӧh����A�H�P����ܪk�W�L����C����į��]�A�ä���ij�ϥγo�˪��s�աA�z3�ӦҼ{���s�]�p�ؿ�c�C�p�ݧ�h��T�A�аѾ\�u�z�s�աv�C
�Y�n�ק��A����Τ�ݶǰe����Ʊj��j�p����G
- �� cn=config ���ت� nsslapd-maxbersize �ݩʳ]�w�s�ȡC
- �Y�n�ϥΥD���x��榹�ʧ@�A�ХH�z��Υؿ�z����n�J�A�îھ��u�H�зǽs�边�קﶵ�ءv�����{�ǽs�� cn=config ���ءC�N nsslapd-maxbersize �ݩʳ]���Τ�ݥi�@���ǰe���̤j�줸�ơC
- �Y�n�q��O���榹�ʧ@�A�ШϥΤU�C��O�G
ldapmodify -h host -p port -D "cn=Directory Manager" -w password
dn:cn=config
changetype:modify
replace:nsslapd-maxbersize
nsslapd-maxbersize:sizeLimitInBytes
^D�p�ݸԲӸ�T�A�аѾ\�mDirectory Server Administration Reference�nChapter 2 �� "nsslapd-maxbersize"�C
- ���u�ҰʩM����ؿ��A���v�ҭz�A���s�Ұʦ�A���C
��~�B�z
��O��u��|�`�dzB�z LDIF ��J�����Ҧ����ةέק�C��Ĥ@�ӿ�~�o�ͮɡA�w�]���B�@�覡�O�|����B�z�C�ϥ� -c �ﶵ�i���z�|����~�~��B�z�Ҧ���J�C�z�|�b�u�㪺��X���ݨ��~���p�C
���F�W�z�Ҽ{�ƶ����~�A�`������~�]�A�G
�p������~���p�ΰj�פ覡���ԲӸ�T�A�аѾ\�mDirectory Server Resource Kit Tools Reference�n���� Chapter 4 "ldapmodify" �M Chapter 5 "ldapdelete"�C
�ϥ� ldapmodify �[�J����
�z�i�H�� ldapmodify �� -a �ﶵ�b�ؿ�[�J�@�Φh�Ӷ��ءC�U�C�d�ҫإߤ@�ӵ��c���إH�]�t�ϥΪ̡A�M��A�إߨϥΪ̶��ءG
ldapmodify -a -h host -p port -D "cn=Directory Manager" -w password
dn:ou=People,dc=example,dc=com
objectclass:top
objectclass:organizationalUnit
ou:People
description:Container for user entries
dn:uid=bjensen,ou=People,dc=example,dc=com
objectclass:top
objectclass:person
objectclass:organizationalPerson
objectclass:inetorgPerson
uid:bjensen
givenName:Barbara
sn:Jensen
cn:Babs Jensen
telephoneNumber: (408) 555-3922
facsimileTelephoneNumber: (408) 555-4000
mail:bjensen@example.com
userPassword:clearPassword-D �M -w �ﶵ�'O��w���v�إ߳o�Ƕ��ؤ��ϥΪ̪��s�� DN �M�K�X�C-a �ﶵ�]�t LDIF ���Y�N�[�J���Ҧ����ءC�M��H DN ���ݩʭȫ�w�C�Ӷ��ءA���ؤ����ϥΤ@�Ӫťզ�Cldapmodify ���ε{���|�b��J�C�Ӷ��ث�إߡA�ó�i����~�C
�b�D�ҤW�A���ت� LDIF �H�U�C���ǦC�X�ݩʡG
��J userpassword �ݩʪ��ȮɡA�Ы�w�¤�r�����K�X�C��A���|�N�o�ӭȥ[�K�A�åB�u�x�s�[�K���ȡC�аȥ��n����Ū���v���A�H�O�@ LDIF �ɮפ����¤�r�K�X�C
�z�]�i�H�b��O��W�ϥΤ��ݭn -a �ﶵ�� LDIF �%N�榡�C�o�خ榡���u�I�O�z�i�H�N�[�J���ؤέקﶵ�ت����z�����X�b�@�_�A�p�U�@�`�ҥܡC
ldapmodify -h host -p port -D "cn=Directory Manager" -w password
dn:ou=People,dc=example,dc=com
changetype:add
objectclass:top
objectclass:organizationalUnit
ou:People
description:Container for user entries
dn:uid=bjensen,ou=People,dc=example,dc=com
changetype:add
objectclass:top
objectclass:person
objectclass:organizationalPerson
objectclass:inetorgPerson
uid:bjensen
givenName:Barbara
sn:Jensen
cn:Barbara Jensen
telephoneNumber: (408) 555-3922
facsimileTelephoneNumber: (408) 555-4000
mail:bjensen@example.com
userPassword:clearPasswordchangetype:add ����r��X3�H���Ҧ��ݩʫإ߫�w DN �����ءC�Ҧ���L�ﶵ�M LDIF �D�ҳ��@�ˡC
�b��ӽd�Ҥ��A�z���i�H�� -f filename �ﶵ�q�ɮ�Ū�� LDIF�A�Ӥ��q�ݾ��JŪ��CLDIF �ɮץ]�t���榡������ϥ� -a �ﶵ�ɪ��ݾ��J�榡�ۦP�C
�ϥ� ldapmodify �קﶵ��
�ϥ� changetype:modify ����i�[�J�B��N�β����{�����ؤ����ݩʤΨ�ȡC��z��w changetype:modify �ɡA�z�]�������Ѥ@�Φh���ܧ�@�~�A�H��X���ت��ק�覡�C�H�U�d����ܤT�ӥi� LDIF �ܧ�@�~�G
dn:entryDN
changetype:modify
add:attribute
attribute:value
...
-
replace:attribute
attribute:newValue
...
-
delete:attribute
[attribute:value]
...�b�椤�ϥί}�鸹 (-) �i�9j��P�@���ت��@�~�A�ťզ�i�9j���P���ت��@�~�s�աC�z�]�i�H���C�ӧ@�~��w�ƭ� attribute:value �t��A�N���̦P�ɥ[�J�B��N�ΧR���C
�[�J�ݩʭ�
�H�U�d����ܦp��ϥάۦP�� add LDIF �y�k�A���{�����h�����ݩʤΩ|���s�b���ݩʥ[�J�ȡG
ldapmodify -h host -p port -D "cn=Directory Manager" -w password
dn:uid=bjensen,ou=People,dc=example,dc=com
changetype:modify
add:cn
cn:Babs Jensen
-
add:mobile
mobile: (408) 555-7844
mobile: (408) 555-7845�Y���U�C���p�A���@�~�i��|���ѡA�ӥB��A���N�Ǧ^��~�G
�ϥΤG�i���ݩʤl����
attribute;binary �l��������ݩʭ�3�z�L LDAP �H�G�i���� (��ƪ����z��϶�) �ǿ�A�Ӥ��ޥ��̪���ڻy�k�C���l���������]�p�D�n�O�w��S�� LDAP �r���ܪk������y�k�A�Ҧp userCertificate�C�G�i��l����3�ȥΩγ~�C
�z�i�H�b ldapmodify ��O�ҥΪ���� LDIF ���z�������ݩʦW�٥[�J�A�?�l�����C
�Y�n��J�G�i��ȡA�z�i�H�����b LDIF ��r����J�A�αq�t�@���ɮפ�Ū��C�H�U�d����ܱq�ɮ�Ū�� LDIF �y�k�G
ldapmodify -h host -p port -D "cn=Directory Manager" -w password
version: 1
dn:uid=bjensen,ou=People,dc=example,dc=com
changetype:modify
add: userCertificate;binary
userCertificate;binary:< file:///path/certFile���F�ϥ� < �y�k��w�ɮצW�١ALDIF ���z�����}�Y�楲���O version:1�C�� ldapmodify �B�z�����z���ɡA���|�N�ݩʳ]���q��w�ɮת����㤺�eŪ��ӨӪ��ȡC
�[�J���y���l�������ݩ�
�ݩʪ��y���P��l�����Ω��w���a�ƪ��ȡC��z���ݩʫ�w�y���l�����ɡA�Ӥl�����|�H�U�C�覡�[�J�ݩʦW�١G
attribute;lang-CC
�䤤 attribute �O�{�����ݩ������ACC �O��Ӧr�*���X�A�H��w�y���C�z�i�H��ܬ��y���l�����[�J��l�����A�H��w���a�ƭȪ��ﵥ�o���C�b���p���U�A�ݩʦW���ܦ��G
attribute;lang-CC;phonetic
�Y�n�b�t�l�������ݩʤW���@�~�A�z������T�t�X��l�����C�Ҧp�A�p�G�n�ק�t lang-fr �y���l�������ݩʭȡA�z�����H�U�C�覡�b�ק�@�~���]�t lang-fr�G
ldapmodify -h -h host -p port -D "cn=Directory Manager" -w password
dn:uid=bjensen,ou=People,dc=example,dc=com
changetype:modify
replace:homePostalAddress;lang-fr
homePostalAddress;lang-fr:34\, avenue des Champs-Elyses�ק��ݩʭ�
�H�U�d����ܦp��ϥ� LDIF ���� replace �y�k�ק����ݩʩM�h�����ݩʪ��Ҧ��ȡG
ldapmodify -h -h host -p port -D "cn=Directory Manager" -w password
dn:uid=bjensen,ou=People,dc=example,dc=com
changetype:modify
replace:sn
sn:Morris
-
replace:cn
cn:Barbara Morris
cn:Babs Morris�ϥ� replace �y�k�ɡA�N������w�ݩʥثe�Ҧ����ȡA�å[�J�Ҧ���w�ȡC
�R���ݩʭ�
�H�U�d����ܦp���R���ݩʡA�H�Υu�R���h�����ݩʤ����@�ӭȡG
ldapmodify -h host -p port -D "cn=Directory Manager" -w password
dn:uid=bjensen,ou=People,dc=example,dc=com
changetype:modify
delete:facsimileTelephoneNumber
-
delete:cn
cn:Babs Morris�ϥ� delete �y�k�o����w attribute:value �t��ɡA�N�����ݩʪ��Ҧ��ȡC�p�G��w attribute:value �t��A�h�u�|�����ӭȡC
�ק�h�����ݩʪ��@�ӭ�
���F�� ldapmodify ��O�ק�h�����ݩʪ��@�ӭȡA�z�����̤U�C�d�ҩҥܰ���ӧ@�~�G
ldapmodify -h host -p port -D "cn=Directory Manager" -w password
dn:uid=bjensen,ou=People,dc=example,dc=com
changetype:modify
delete:mobile
mobile: (408) 555-7845
-
add:mobile
mobile: (408) 555-5487�ϥ� ldapmodify ���s�R�W����
���s�R�W���ءA�N�O�ק復���۹��O�W�� (RDN)�A�o�O���� DN ���̥��䪺 attribute=value �t��C���ݩʺ٬��R�W�ݩʡA�ӥB�b���ت��U�ݩʤ������]�����H�ۦP���Ȧs�b�C
���s�R�W���خɡA�z�L�k�ܧ� DN ����L��!A�ӾɭP���ز��줣�P���𪬤l�ؿ�C�Y�n�N���ا������줣�P���$�A�z�������¶��ت��ݩʦb��L�𪬤l�ؿ�إ߷s���ءA�A�R���¶��ءC
�ӥB�A�z�L�k���s�R�W�����l�������ءA�o�O�]����� RDN �Φb��l���� DN ���A�� DN �����Ҧ����س������s�b�ҭP�C�Y�n���ʾ�Ӿ𪬥ؿ�A�z�����b�s��m���s�إ߸Ӿ𪬥ؿ�C
�ϥ� changetype:modrdn ����r�i�� LDIF ���z�����s�R�W���ءC�H�U�d�ұN���s�R�W Barbara Morris �� uid �R�W�ݩʡG
ldapmodify -h host -p port -D "cn=Directory Manager" -w password
dn:uid=bjensen,ou=People,dc=example,dc=com
changetype:modrdn
newrdn:uid=bmorris
deleteoldrdn: 1newrdn ��� attribute=value �y�k��w�s���R�W�ݩʡCdeleteoldrdn ���ܬO�_3�P�ɱN�쥻���R�W�ݩʱq���ؤ����� (1 �N��O�A0 �N��_)�C���ץ�@�ت��p�A�s���R�W�ݩʤ]���|�[�J���ءC
�ϥ� ldapdelete �R������
�ϥ� ldapdelete ��O�椽�ε{���i�q�ؿ�R�����ءC�����ε{���|�s����ؿ��A���A�çR�� DN �ҫ�w���@�Φh�Ӷ��ءC�z�������Ѧ��v�R����w���ت��s�� DN�C
�N�p�P����୫�s�R�W�@�˪��D�z�A�z�]����R�����l�������ءCLDAP �q�T��w�T��l�����A����s�b�����p�o�͡C�Ҧp�A�z�L�k�R����´��춵�ءA���D��R���ݩ�Ӳ�´��쪺�Ҧ����ءC
�p��
�ФŧR���=X o=NetscapeRoot�CAdministration Server �ϥΦ��=X�x�s�w�w�� Sun Java System ��A���������T�C�R�����=X�i��|���ϱz���s�w�˥]�A Directory Server �b�����Ҧ� Sun Java System ��A���C
�b�U�C�d�Ҥ��A��´��줤�u���@�Ӷ��ءA�ҥH�ڭ̧R���Ӷ��ءA�A�R����G
ldapdelete -h host -p port -D "cn=Directory Manager" -w password
uid=bjensen,ou=People,dc=example,dc=com
ou=People,dc=example,dc=com�ϥ� ldapmodify �R������
�z�]�i�H�ϥ� ldapmodify ���ε{���� changetype:delete ����r�R�����ءC�Z�O�H�W�ҭz�ϥ� ldapdelete �ɪ�����A�b�oئP�˾A�ΡC�ϥ� LDIF �y�k�R�����ت��u�I�O�z�i�H�b�@�� LDIF �ɮפ����V�X���@�~�C
�H�U�d�ұN���P��e�d�ҬۦP���R���@�~�G
ldapmodify -h host -p port -D "cn=Directory Manager" -w password
dn:uid=bjensen,ou=People,dc=example,dc=com
changetype:delete
dn:ou=People,dc=example,dc=com
changetype:delete
�]�w�ѷ��z�i�H�ϥΰѷӧi�D�Τ��3�ε{���b����L�k��o��T��3�p��������A���C�ѷӬO��컷�ݧ=X�ζ��ت���СADirectory Server �|�N����жǦ^���Τ�ݡA�Ӥ��Ǧ^���G�C���U�ӡA�Τ�ݥ������s��ѷӤ���w�����ݦ�A���W���@�~�C�b�T�ت��p�U�|�o�ͦ����s�ɦV�@�~�G
- ��Τ��3�ε{���n�D���s�b�����A�������خɡA��A���Ǧ^�w�]�ѷӡC
- ���ӧ=X���F�i����@�A�ΰ��w���ʪ���]�ӳ]����u���A�ɡA��A���N�Ǧ^�ӧ=X�w�q���ѷӡC�=X�h�Ū��ѷӻ�����u�]�w�s���v���ΰѷӡv���C��Τ�ݭn�D�g�J�@�~�ɡA�=X����Ū�ƥ��]�|�V�D���A���Ǧ^�ѷӡC
- �z�i�H�إߺ٬����z���ѷӪ����ءC��Τ�ݩ�T�s��z���ѷӮɡA��A���N�Ǧ^���ҩw�q���ѷӡCDirectory Server Console �|�۰ʰt�m�H�l�ܴ��z���ѷӡA�ϥ��̴N���O�̤W�h [�ؿ�] ���ҤW������ؤ@�ˡC
���O���@�ت��p�A�@�ӰѷӴN�O�@�� LDAP URL�A�䤤�]�t�t�@����A�����D��W�١B�s���X�ο�Ϊ� DN�C�p�ݸԲӸ�T�A�аѾ\�mDirectory Server Administration Reference�n���� Chapter 6 "LDAP URL Reference"�C�p�����p��b�ؿ�G�p���ϥΰѷӪ����סA�аѾ\�mDirectory Server Deployment Planning Guide�n���� Chapter 5 "Distribution, Chaining, and Referrals" �C
�U�C�U�`�y�z�w�q�ؿ�w�]�ѷӤΩw�q���z���ѷӪ��{�ǡC
�]�w�w�]�ѷ�
��Τ��3�ε{���b DN �W�Ҵ��檺�@�~���]�t�b�ؿ�Һ��@�����=X���ɡA�K�|�N�w�]�ѷӶǦ^���ӥΤ��3�ε{���C�w�]�ѷӦ��ɭԺ٬�����ѷӡA�]�����̾A�Ω�ؿ�Ҧ��=X�C��A���N�Ǧ^�w�q���Ҧ��=X�A��Ǧ^�����ǫh���w�q�C
�ϥΥD���x�]�w�w�]�ѷ�
- �b Directory Server Console �̤W�h�� [�պA] ���ҤW�A��ܦ��պA�𪬥ؿ�ڳ�����A���`�I�A�M���ܥk���O���� [���] ���ҡC
- ��� [�Ǧ^�ѷ�] �֨���A�æb��r��줤��J LDAP URL�C�Ϊ̡A��@�U [�غc URL]�A�b��ޤU���� LDAP URL ���w�q�C���w���s���� LDAP URL �d�Ҧp�U�G
ldaps://east.example.com:636/dc=example,dc=com
�z�i�H�ΪŮ�P���9j�A��J�h�Ӱѷ� URL�A�p�U�G
"ldap://east.example.com:389" "ldap://backup.example.com:389"
- ��@�U [�x�s] ���ܧ�ߧY�ͮġC
�q��O��]�w�w�]�ѷ�
�ϥ� ldapmodify ��O�椽�ε{���i�b�ؿ�պA�ɪ� cn=config ���ؤ��[�J�Ψ�N�@�Φh�ӹw�]�ѷӡC�Ҧp�G
ldapmodify -a -h host -p port -D "cn=Directory Manager" -w password
dn:cn=config
changetype:modify
replace:nsslapd-referral
nsslapd-referral:ldap://east.example.com:389
nsslapd-referral:ldap://backup.example.com:389�z�������s�Ұʦ�A���C
�إߴ��z���ѷ�
���z���ѷӥi��z�N�ؿ�ةξ𪬥ؿ��M��S�w LDAP URL�C�ϥδ��z���ѷӡA�z�i�H�N�Τ��3�ε{�����S�w��A���A�ίS�w��A���W���S�w���ءC
�q�`�A���z���ѷӷ|���t�@����A���W���ۦP DN ����ڶ��ءC��O�z�i�H�w�q���z���ѷӡA���P�@��A���Τ��P��A���W����ءC�Ҧp�A�z�i�H�ΤU�C DN �w�q���ءG
uid=bjensen,ou=People,dc=example,dc=com
�������z���ѷӡA��� east.example.com ��A���W���t�@�Ӷ��ءG
cn=Babs Jensen,ou=Sales,o=east,dc=example,dc=com
�ؿ�ϥδ��z���ѷӪ��覡�ŦX RFC 2251 (http://www.ietf.org/rfc/rfc2251.txt) �� 4.1.11 �`����w���зǡC
�ϥΥD���x�إߴ��z���ѷ�
- �b Directory Server Console �̤W�h�� [�ؿ�] ���ҤW�A�i�}�𪬥ؿ�A�H��ܭn�������z���ѷӤ�����ءC
- �H�ƹ��k���@�U��A��� [�s�W] > [�ѷ�] �\��?�ءC�Ϊ̡A�z�i�H�b��W��@�U�ƹ�����H��ܤ�A�A��� [����] > [�s�W] > [�ѷ�] �\��?�ءC
�X�{�ѷӶ��ت��ۭq�s�边��ܤ��C
- �b�s�边�� [�@��] ���ҤW�A��J�ѷӪ��W�١A�ñq�U�Ԧ��M�椤��ܨ�R�W�ݩʡC�W�ٱN�O�z��ܪ��R�W�ݩʪ��ȡC�Ϊ̡A�z�i�H�����ѷӿ�J�y�z�r��C
- �b�s�边�� [URL] ���ҤW�A��@�U [�غc] ��s�H�w�q���z���ѷӪ� URL�C�b�X�{����ܤ���J LDAP URL �����!C
URL �����%]�A�x�s�ѷӶ��ؤ��ؿ��A�����D��W�٩M LDAP �s���X�A�H�Φ�A���W�ؼж��ت� DN�C�̹w�]�ȡA�ؼ� DN �P���z���ѷӶ��ت� DN �ۦP�C��O�ؼ� DN �i�H�O���=X�B�𪬤l�ؿ�Τ8����ءC
- �b LDAP URL �غc��ܤ��A��@�U [�T�w]�CURL �N��ܦb�s�ѷӤ�r���C
- ��@�U�s�ѷӤ�r���Ǫ� [�[�J]�A�N�ѷӥ[�J�M��C
- �z�i�H�w�q�h�� URL�A���������ضǦ^���ѷӡC�ϥ� [�غc]�B[�[�J]�B[�R��] �P [�ܧ�] ��s�i�إP�z [�ѷӲM��]�C
- ��@�U [�ѷ�����] ��s�i��ܹ�ܤ��A�z�i�H�b�䤤�]�w Directory Server Console �b�l�ܰѷӨ컷�ݦ�A���ɱN�Ψӳs�������ҡC�z�i�H�w�q�s���A���ɱN�ϥΪ��s�� DN �P�K�X�C��V�P�@��A�����Ҧ��ѷӳ��N�ϥάۦP���{�ҡC
- �ϥ� [�[�J]�B[�s��] �P [�R��] ��s�i�z��A���P��3�{�ҲM��C�����ɫ�@�U [�T�w]�C
- �b�ѷӪ��ۭq�s�边���A��@�U [�x�s] �x�s�z�����z���ѷӶ��ءC
�b�D���x���𪬥ؿ�A�z3�Ӭݨ�ؼо𪬤l�ؿ�ζ��ب�N���z���ѷӶ��ءC�p�G���z���ѷӶ��ئ��&�ĵ�i�ϥܡA��� URL �λ{�ҵL�ġC�гs���U���ءA���ݨ� [�ѷӿ�~] �ɫ�@�U [�~��]�A�íק� [URL] �� [�ѷ�����] �H�ץ���~�C
�q��O��إߴ��z���ѷ�
�Y�n�إߴ��z���ѷӡA�Х� referral �P extensibleObject �������O�إ߶��ءCreferral �������O���\ ref �ݩʡA���ݩ�3�ӭn�]�t LDAP URL�CextensibleObject �������O�i��z�ϥΥ�c�ݩʰ����R�W�ݩʡA�H�K����M��ؼж��ءC
�Ҧp�A�w�q�U�C���ضǦ^���z���ѷӡA�Ӥ��Ǧ^ uid=bjensen ���ءG
ldapmodify -a -h host -p port -D "cn=Directory Manager" -w password
dn:uid=bjensen,ou=People,dc=example,dc=com
objectclass:top
objectclass:extensibleObject
objectclass:referral
uid:bjensen
ref:ldap://east.example.com/cn=Babs%20Jensen,ou=Sales,
o=east,dc=example,dc=com
�Ƶ�
��A���|���� LDAP URL ���Ů椧�᪺����T�C�]���b�w�p�@���ѷӪ���� LDAP URL ���A�z������� %20�A�Ӥ��O�ϥΪŮ�C����������L�S��r���C
�w�q���z���ѷӫ�A�� uid=bjensen ���ت��ק��ڤW�|�b��L��A���� cn=Babs Jensen ���ؤW���Cldapmodify ��O�N�۰ʰl�ܰѷӡA�Ҧp�G
ldapmodify -h host -p port -D "cn=Directory Manager" -w password
dn:uid=bjensen,ou=People,dc=example,dc=com
changetype:replace
replace:telephoneNumber
telephoneNumber: (408) 555-1234���F�קﴼ�z���ѷӡA�z�����ϥ� ldapmodify �� -M �ﶵ�A�Ҧp�G
ldapmodify -M -h host -p port -D "cn=Directory Manager" -w password
dn:uid=bjensen,ou=People,dc=example,dc=com
changetype:replace
replace:ref
ref:ldap://east.example.com/cn=Babs%20Jensen,ou=Marketing,
o=east,dc=example,dc=com
�[�K�ݩʭ��ݩʥ[�K�i�H�O�@�x�s�b�s�ؿ�ӷP�ʸ�ơC�ݩʥ[�K���\�z��w�H�[�K�榡�x�s�����ت��S�w�ݩʡC�o�i�����Ʃ��x�s�b��Ʈw�ɮסB�ƥ��ƥH�ζץX�� LDIF �ɮɳQŪ��C
�ݩʭȥi�Q�Φ����\��A�b�N���x�s�� Directory Server ��Ʈw�e�A���[�K�A�H�Φb�Ǧ^��Τ�ݫe�A��ѱK�^��l�ȡC�b�Τ�ݩM Directory Server �����ǰe�ɡA�z�����ϥΦs���A����Τ�ݦs��S���v�����ݩʩM SSL �H�[�K�ݩʡC�p�ݤ@���Ʀw���ʡA�S�O�O�ݩʥ[�K�����c�����סA�аѾ\�mDirectory Server Deployment Planning Guide�n���� Chapter 7 "Access Control, Authentication, and Encryption"�C
�u���b��A���W�t�m�ñҥ� SSL ��A�~�|�ҥ��ݩʥ[�K�C���L�A�̾ڹw�]�ä��|�[�K����ݩʡC�t�η|�b�=X�h�Ť��]�w�ݩʥ[�K�C�o�O��N�X�{�b�C�@�Ӷ��ؤ��=X���ݩʥ[�K�C�p�G�z�Q�n�N��ӥؿ�Y���ݩʥ[�K�A�����ҥΨC�@�ӧ=X�����ݩʪ��[�K�C
�p�G�z��ܥ[�K���ݩʭY�|�N�Y�Ƕ��ط?�R�W�ݩʨϥΡA�h�X�{�b DN �����ȱN���|�[�K�A���x�s�b���ؤ����ȱN�|�[�K�C
�z�i�H��� userPassword �ݩʶi��[�K�A��o�èS����ڪ��w���ʮįq�A���D�K�X�ݥH�¤�r�x�s�A�p DIGEST-MD5 SASL ���Ҥ@�ˡC�p�G�K�X�������w���K�X�]�w�[�K���A�h��i�@�B���[�K�ү�W�[���w���ʦ����A�ٷ|�v�T�C�@���s���@�~���į�C
�b�x�s���A�[�K���ݩʥH��ܨϥΥ[�K�t��k���[�K���ҧ@���}�ݡC�ϥ� DES �[�K�t��k���[�K�ݩʷ|��ܦp�U�G
�ϥΥD���x�t�m�ݩʥ[�K
- �b Directory Server Console �W��� [�պA] ���ҡA�i�} [���] �`�I�A�ÿ�ܱz�Q�n�[�K�ݩʭȪ��=X�C��ܥk���O���� [�ݩʥ[�K] ���ҡC
�����ҥ]�t�@����A�C�X���=X�ثe�Ҧ��[�K�ݩʪ��W�٩M�[�K���c�C
- �Y�n���ݩʱҥΥ[�K�G
- �Y�n���ݩʤ��A�[�K�A�бq��椤����ݩʦW�١A�A��@�U [�R���ݩ�] ��s�C
- ��@�U [�x�s]�C�t�η|���ܱz�b�ܧ�պA�e�A��N�=X���e�ץX�� LDIF �ɮסC
- ��@�U [�ץX�=X] �}�ҶץX��ܤ��A�Ϋ�@�U [�~��]�A���ݭn�ץX�Y�i�ק��ݩʥ[�K�պA�C�M��s���պA�N�|�x�s�_�ӡC
�p�G�z�|���ץX�=X�A�z�����ߧY��榹�ʧ@�H�x�s�䤺�e�C�p�G�=X�]�t�[�K���ݩʡA�ӥB�z�p���b�U�ӨB�J���ϥΦ� LDIF �ɮ��s��l�Ƨ=X�A�o���ݩʦb�ץX�� LDIF ���i�H�O��[�K���A�C
�{�b�N�X�{���ܡA�n�z�q LDIF �ɮת�l�Ƨ=X�C
- �{�b��@�U [��l�Ƨ=X] �}�Ҫ�l�ƹ�ܤ��A�M��A��J LDIF �ɮצW�ٸ�J�ؿ�C
�p�G�b�W�ӨB�J���ץX�t�[�K�ݩʪ��=X�A�z�{�b�����θ��ɮת�l�ơA�]���@���=X���s��l�ƫ�A�[�K�ȱN�L�k�^�_�C�b��J�Ϋإ߯dު��P�ɡA��w�ݩʪ��Ҧ��ȳ��N�|�[�K�C
�p�G�z���Q�b���ɪ�l�Ƨ=X�A�Ы�@�U [��]�C�z�i��y��A�ϥ��u�פJ��ơv���Ҵy�z���{�ǨӶפJ��ơC
- �p�G�պA�w�אּ�|�[�K�@�Φh���ݩʡA�ӥB�o���ݩʦb�פJ�@�~���e���g���ȡA��Ʈw�֨�i����¬ݱo�쳡�%��[�K���ȡC�Y�n�M����Ʈw�֨�G
- ���u�ҰʩM����ؿ��A���v�ҭz���� Directory Server�C
- �H root �Ψ㦳�z���v��������A�N��Ʈw�֨��ɮױq�ɮרt�Τ��R���G
ServerRoot/slapd-serverID/db/__db.*
- �A���Ұ� Directory Server�C��A���N�۰ʫإ߷s����Ʈw�֨��ɮסC
�q��O��t�m�ݩʥ[�K
- �p�G�n�t�m�ݩʥ[�K���=X�W����ءA�z������N�ӧ=X�����e�ץX�� LDIF �ɮסC�p�ݧ�h��T�A�аѾ\�u�ץX��av�C
�p�G�=X�]�t�[�K���ݩʡA�ӥB�z�p���b�B�J 5 ���ϥΦ� LDIF �ɮ��s��l�Ƨ=X�A�o���ݩʦb�ץX�� LDIF ���i�H�O��[�K���A�C
- �Y�n���ݩʱҥΥ[�K�A�Шϥ� ldapmodify ��O�[�J�U�C�պA���ءG
ldapmodify -a -h host -p port -D cn=Directory Manager -p password
dn:cn=attributeName, cn=encrypted attributes, cn=databaseName,
cn=ldbm database, cn=plugins, cn=config
objectclass:top
objectclass:dsAttributeEncryption
cn: attributeName
dsEncryptionAlgorithm:cipherName�䤤 attributeName �O�n�[�K���ݩ������W�١AdatabaseName �O��M��=X����Ʈw�Ÿ��W�١A�� cipherName �O�U�C�䤤���@�G
- �Y�n���ݩʤ��A�[�K�A�Шϥ� ldapmodify ��O�ק�U�C�պA���ءG
ldapmodify -h host -p port -D cn=Directory Manager -p password
dn:cn=attributeName, cn=encrypted attributes, cn=databaseName,
cn=ldbm database, cn=plugins, cn=config
changetype:modify
replace:dsEncryptionAlgorithm
dsEncryptionAlgorithm:clearText�䤤 attributeName �O�n�[�K���ݩ������W�١A�� databaseName �O��M��=X����Ʈw�Ÿ��W�١C
- �p�G�պA�w�אּ�|�[�K�@�Φh���ݩʡA�ӥB�o���ݩʦb�פJ�@�~���e���g���ȡA��Ʈw�֨�i����¬ݱo�쳡�%��[�K���ȡC�Y�n�M����Ʈw�֨�G
- ���u�ҰʩM����ؿ��A���v�ҭz���� Directory Server�C
- �H root �Ψ㦳�z���v��������A�N��Ʈw�֨��ɮױq�ɮרt�Τ��R���G
ServerRoot/slapd-serverID/db/__db.*
- �A���Ұ� Directory Server�C��A���N�۰ʫإ߷s����Ʈw�֨��ɮסC�b�֨�A�����e�A���=X�����@�~�į�i��|�y�L���v�T�C
- ���u�פJ��ơv�ҭz�� LDIF �ɮת�l�Ƨ=X�C
�b��J�ɮפΫإ߹�3�dު��P�ɡA��w�ݩʪ��Ҧ��ȳ��N�|�[�K�C
���@�ѦҪ�������ѦҪ�������O�@�� Plug-in ���A�i�T�O���@����ؤ�������Y�C�\�h�ݩ����� (�Ҧp�s�զ����ݩ�) ���]�t�t�@�Ӷ��ت� DN�C�ѦҪ�����ʥi�T�O�������خɡA�]�t�� DN ���Ҧ��ݩʤ]�|�@�ֲ����C
�Ҧp�A�p�G�����F�ؿ�ϥΪ̶��ءA�ӥB�w�g�ҥΰѦҪ�����ʡA�h��A���]�|�����ϥΪ̬�����@���Ҧ��s�ժ��ϥΪ̡C�p�G�S���ҥΰѦҪ�����ʡA�z����ʱq�s�դ������ϥΪ̡C�p�G�z�N Directory Server �P��L�ݭn�Ψ�ϥΪ̻P�s�պz�� Sun Java System ���~�i���X�ɡA�o�|�O�@�����n�\��C
�ѦҪ�����ʾާ@��k
��ҥΰѦҪ������ Plug-in �ɡA��|�b�R���έ��s�R�W�@�~����A�ߧY���S�w�ݩʤW������ʧ�s�C�̾ڹw�]�A�ѦҪ������ Plug-in �O���Ϊ��C
�C��z�R���έ��s�R�W�ؿ�ϥΪ̩θs�ն��خɡA�|�N�@�~�O��b�ѦҪ�����ʤ�x�ɤ��G
ServerRoot/slapd-serverID/logs/referint
�g�L�S�w�ɶ� (�Y��s���j) ��A��A���|�b�ҥΰѦҪ�����ʤ��Ҧ��ݩʤW���j�M�A�èϷj�M�X�Ӫ����ػP�X�{�b��x�ɤ��w�R���Τw�קﶵ�ت� DN ���۲ŦX�C�p�G��x����ܤw�g�R�����ءA�h��3���ݩʤ]�|�R���C�p�G��x����ܤw�g�ܧءA�h��3���ݩʭȤ]�|�۹�a�ק�C
�Y�ҥΰѦҧ���� Plug-in ���w�]�պA�A�C�����R���έ��s�R�W�@�~��A���|�ߧY�b member�Buniquemember�Bowner�BseeAlso �M nsroledn �ݩʤW��槹��ʧ�s�C��O�z�i�H�̷ӱz���ݭn�t�m�Ѧҧ���� Plug-in ���B�@�覡�G
�t�m�ѦҪ������
�ϥΤU�C�{�ǥi�q Directory Server Console �ҥΩΰ��ΰѦҪ�����ʡA�H�ΰt�m Plug-in�G
�q�D���x�W�t�m�Ѧҧ����
- �b Directory Server Console �̤W�h�� [�պA] ���ҤW�A�i�} [Plug-in] �`�I�A�A��� [referential integrity postoperation] Plug-in�C
Plug-in ���]�w��ܦb�k���O���C
- ��� [�ҥ� Plug-in] �֨���H�ҥ� Plug-in�A�M���֨���H���� Plug-in�C
- �]�w [�� 1] ���ȡA�H�ק��s�����j��ơC�`�Ϊ��Ȭ��G
- �]�w [�� 2] ���ȡA�����Ѧҧ���ʤ�x�ɪ������|�C
[�� 3] ����A��s�b�C
- ��Ѧҧ���� Plug-in �ʱ����ݩʥ� [�� 4] �}�l�C�_�C��@�U [�[�J] �P [�R��] ��s�i�z���M��A�Υ[�J�z�ۤv���ݩʡC
�Ƶ�
����o�̨ήį�A�ѰѦҧ���� Plug-in ��s���ݩʤ]3�ӽs�s�dޡC�p�ݬ����T�A�аѾ\�� 10 ���u�s�s�ؿ��Ưdޡv�C
- ��@�U [�x�s] �H�x�s�z���ܧ�C
- �ܧ�ͮīe�A�z�������s�Ұ� Directory Server�C
�N�ѦҪ�����ʥΩ�ƻs
�b�ƻs��Ҥ��A�s�b�Y�ǨϥΰѦҧ���� Plug-in ������G
�Y�n�b�ƻs�ݾ뤤�t�m�ѦҪ������ Plug-in�G
- �T�w�w�t�m�Ҧ��ƥ����պA�A�ӥB�w�w�q�Ҧ��ƻs��ij�C
- �M�w�N������@�Ѧҧ���ʪ��ݩʲաC�èM�w�D���A���W�ҭn�ϥΪ���s���j�C
- �ϥάۦP���ݩʲդάۦP����s���j�ҥΩҦ��D���A���W���Ѧҧ���� Plug-in�C���{�Ƿ|�b�u�t�m�ѦҪ�����ʡv���y�z�C
- �нT�w�Ҧ��Τ��A���W�ѦҪ������ Plug-in ���O���Ϊ��C
�N�Ѧҧ���ʥΩ��~�ӽƻs
�q 4.x �D��V 5.x �ϥΪ̽ƻs�ɡA�ҥΰѦҧ���ʡA�z�����b 4.x �D��W���s�t�m�Ѧҧ���� Plug-in�A�N�Ѧҧ�����ܧ�g�J 4.x �ܧ�O��C���ާ@�ϰѦҧ�����ܧ�Q�ƻs�C�p�G�S�����s�t�m Plug-in�A�Ѧҧ���ʵL�k���`�B�@�C
�b�H�U��Ҥ����s�t�m�Ѧҧ���� Plug-in�G
- ���� 4.x ��A���C
- �}�� ServerRoot/slapd-ServerID/config/ ���� slapd.ldbm.conf �ɮסC
- �M��H�U���y�l�}�l����
plugin postoperation on "referential integrity postoperation"
- �z�L�N�ݩʲM��e���ƥ� 0 �ܧ� 1�ӭק惡��C
�Ҧp�A�N
plugin postoperation on "referential integrity postoperation" "ServerRoot/lib/referint-plugin.dll" referint_postop_init 0 "ServerRoot/slapd-serverID/logs/referint" 0 "member" "uniquemember" "owner" "seeAlso"
�ܧ�
plugin postoperation on "referential integrity postoperation" "ServerRoot/lib/referint-plugin.dll" referint_postop_init 0 "ServerRoot/slapd-serverID/logs/referint" 1 "member" "uniquemember" "owner" "seeAlso"
- �x�s slapd.ldbm.conf �ɮסC
- ���s�Ұʦ�A���C
- �q 4.x ��3�ӭ��s��l�� 5.x �ϥΪ̡C
�j�M�ؿ��z�i�H�ϥΥ�� LDAP �Τ�ݧ�X�ؿ���ءC�j����Τ�ݴ��ѬY�طj�M�����A��z�j�M�ؿ�M�^��ظ�T�C
�b�z�ؿ�]�w���s���|�M�w�j�M���G�C�@��ϥΪ̳q�`���|�u�ݨ�v�ؿ�Ӧh���e�A�ӥB�ؿ�z��֦��s��]�A�պA���Ҧ���Ƥ������v���C
�j�M�� ldapsearch ���ؿ�
�z�i�H�ϥ� ldapsearch ��O�椽�ε{����X�M�^��ؿ�ءC�Ъ`�N�A���`���y�z�� ldapsearch ���ε{�����O Solaris ���x���Ѫ����ε{���A��O Directory Server Resource Kit ���@���!C�p�ݦ���ε{�����ԲӸ�T�A�аѾ\�mDirectory Server Resource Kit Tools Reference�n�C
�����ε{���H��w�ϥΪ̨��� (�q�`�O��O�W��) �M�K�X�}�һP��A�����s�u�A�åB�ھڷj�M�z�ᄍ��X���ءC�j�M�d��i�H�]�A��@���ءB���ت������l���ءB�άO��Ӿ𪬥ؿ�ξ𪬤l�ؿ�C
�j�M�H LDIF �榡�Ǧ^�����G�C
ldapsearch ��O��榡
�ϥ� ldapsearch �ɡA�z�����ϥΤU�C�榡��J��O�G
ldapsearch [optional_options] [search_filter] [optional_list_of_attributes]
�䤤
- optional_options �N��@�t�C����O��ﶵ�C�����b�j�M�z�ᄍ���e��w�o�ǿﶵ (�p�G������)�C
- search_filter �N���uLDAP �j�M�z�ᄍ�v���y�z�� LDAP �j�M�z�ᄍ�C�p�G�z���ϥ� -f �ﶵ�b�ɮפ����ѷj�M�z�ᄍ�A�h������w�j�M�z�ᄍ�C
- optional_list_of_attributes �N��H�Ů�9j���ݩʲM��C��w�ݩʲM��|��ַj�M���G���Ǧ^���ݩʼƥءC���ݩʲM�楲���X�{�b�j�M�z�ᄍ����C�p�ݽd�ҡA�аѾ\�u����ݩʪ��l���v�C�p�G�z�S����w�ݩʲM��A�h�j�M�|�Ǧ^�ؿ�]�w���s���»P���Ҧ��ݩʭ� (�ާ@�ݩʰ��~)�C
�ϥίS��r��
�ϥ� ldapsearch ��O�椽�ε{���ɡA�z�i�ॲ����w�@�ǹ��O���Ķ���㦳�S��N�q���r���A(�Ҧp�Ů� [ ]�B�P�� [*]�B�ϱu [\] ��)�C��w�S��r���ɡA�N�ȸm��� (�u�v) ���C�Ҧp�G
-D "cn=Charlene Daniels,ou=People,dc=example,dc=com"
�̫�O���Ķ���өw�A�ϥγ������������γ~�C�p�ݸԲӸ�T�A�аѾ\�z�� Shell ������C
�`�Ϊ� ldapsearch �ﶵ
�H�U�C�X�F�̱`�Ϊ� ldapsearch ��O��ﶵ�C�p�G�z��w�t���Ů� [ ] ���ȡA��3�Ӹm����������A�Ҧp -b "ou=groups, dc=example,dc=com"�C
-b
��w�j�M���_�I�C�o��w���ȥ����O�ثe�s�b���Ʈw������O�W�١C�p�G LDAP_BASEDN ����ܼƤw�]�w����¦ DN�A�h���ﶵ���i�ﶵ�C
���ﶵ����w����3�Ӹm��������C�Ҧp�G
-b "cn=Charlene Daniels, ou=People, dc=example,dc=com"
-D
��w���A���i�����ҩҨϥΪ���O�W�١C�p�G�z����A���䴩�ΦW�s��A�h���ﶵ���i�ﶵ�C�p�G�w��w�A�h���ȥ����O Directory Server �T�{�� DN�A�ӥB�]�������j�M���ت��v���C�Ҧp�G
-D "uid=cdaniels, dc=example,dc=com"
-h
�b�w�� Directory Server ����W�A��w�D��W�٩� IP ��}�C�p�G����w�D��A�h ldapsearch �ϥ� localhost�C�Ҧp -h myServer�C
-l
��w���ݧ����j�M�ШD���̤j��ơC�L�צb�oث�w��ȡAldapsearch �����|���Ԥ��A�� nsslapd-timelimit �ݩʩҤ��\���ɶ���� (����j�M���~)�C�p�ݦ������j�M���ԲӸ�T�A�аѾ\�mDirectory Server Resource Kit Tools Reference�n���� Chapter 3 "ldapsearch"�C
�Ҧp -l 300�Cnsslapd-timelimit �ݩʪ��w�]�ȬO 3,600 �� (1 �p�ɡC)
-p
��w Directory Server �ϥΪ� TCP �s���X�C�Ҧp -p 5201�C�w�]�Ȭ� 389�A�ϥ� SSL �ﶵ�ɬ� 636�C
-s
��w�j�M���d��C�d��i��O�䤤���@�G
-w
��w�P�b -D �ﶵ����w����O�W�٦���K�X�C�p�G�z�S����w���ﶵ�A�h�ϥΰΦW�s��C�Ҧp -w diner892�C
-x
��w�b��A���Ӥ��O�Τ�ݤW�ƧǷj�M���G�C�p�G�z�Q�n�ھڬ۲ųW�h�ƧǡA�Ҧp�ϥΰ�ڷj�M���A�o�ӿﶵ�ܦ��ΡC�@��Ө��A�b��A���ݱƧǤ�b�Τ�ݧ֡A��M��A���ݱƧǨϥΪ��O��A���귽�C
-z
��w�^3�j�M�n�D�ɭn�Ǧ^�����ؼƳ̤j�ȡC�Ҧp -z 1000�C
�@��Ө��A�L�׳oث�w��ȡAldapsearch �����|�Ǧ^���A���� nsslapd-sizelimit �ݩʩҤ��\�ƶq�٭n�h�����ءC��b�ϥΦ���O��ƮɡA�z�i�H�s������ DN �H�мg������C�s������ DN �ɡA���ﶵ�w�]���s (0)�Cnsslapd-sizelimit �ݩʪ��w�]�ȬO 2,000 �Ӷ��ءC
�p�ݦ���Ҧ� ldapsearch ���ε{���ﶵ���ԲӸ�T�A�аѾ\�mDirectory Server Resource Kit Tools Reference�n�C
ldapsearch �d��
�b�U�@�սd�Ҥ��i��H�U���]�G
�Ǧ^�Ҧ�����
���w���ѥ�e��T�A�U�C�I�s�N�b�ؿ�Ǧ^�Ҧ����ءG
ldapsearch -h myServer -p 5201 -D "cn=directory manager" -w password
-b "dc=example,dc=com" -s sub "(objectclass=*)""(objectclass=*)" �O�ŦX�ؿ��ت��j�M�z�ᄍ�C
��w��O��W���j�M�z�ᄍ
�z�i�H�����b��O��W��w�j�M�z�ᄍ�C�p�G�z�o�˰��A�нT�w�N�z�ᄍ��b���� (�u�z�ᄍ�v)�C�P�ɡA�Фū�w -f �ﶵ�C�Ҧp�G
ldapsearch -h myServer -p 5201 -D "cn=directory manager" -w password
-b "dc=example,dc=com" "(cn=Charlene Daniels)"�j�M�� DSE ����
�� DSE �O�@�ӯS�?�ءA�t���P�ثe��A����Ҧ����T�A�Ҧp�Ҥ䴩�=X�B�i�����Ҿ����M��C�z�i�H�z�L���ѡu�v�j�M��¦�j�M�����ءC�P�ɡA������w base ���j�M�d��M "(objectclass=*)" ���z�ᄍ�C�Ҧp�G
ldapsearch -h myServer -p 5201 -D "cn=directory manager" -w password
-b "" -s base "(objectclass=*)"�j�M���c����
Directory Server �N�Ҧ��ؿ��A�����c�x�s�b�S�� cn=schema ���ؤ��C�����اt����z���ؿ��A���w�q���C�Ӫ������O�M�ݩʸ�T�C
�z�i�H��p�U�覡�ˬd�����ؤ��e�G
ldapsearch -h myServer -p 5201 -D "cn=directory manager" -w password
-b "cn=schema" -s base "(objectclass=*)"
�Ƶ�
���F�F�찪�ת��@�P�ʡA���w���ت����c���n���ئ�m�� subschemaSubentry �ާ@�ݩʫ�w�C�b�o�@������ Directory Server ���A���ݩʭȩl�� cn=schema�C
�ϥ� LDAP_BASEDN
�Y�n�Ϸj�M��e��A�z�i�H�ϥ� LDAP_BASEDN ����ܼƳ]�w�j�M��¦�C�o�˰��i��z�ٲ��ϥ� -b �ﶵ��w�j�M��¦ (�p�ݦ���]�w����ܼƪ���T�A�аѾ\�@�~�t�Ϊ�������)�C
�q�`�|�N LDAP_BASEDN �]�w���ؿ�=X�ȡC�ѩ�ؿ�=X�M�ؿ�کγ̤W�h���ج۵��A�o�˷|�ϩҦ����j�M�q�ؿ�ڶ��ض}�l�C
�Ҧp�A�p�G�w�N LDAP_BASEDN �]�w�� dc=example,dc=com�A�z�i�H�ϥΤU�C����O��I�s�j�M (cn=Charlene Daniels)�G
ldapsearch -h myServer -p 5201 -D "cn=directory manager" -w password
"(cn=Charlene Daniels)"�b���d�Ҥ��A�ϥ� sub ���w�]�d��A�]�� -s �ﶵ���Ω��w�d��C
����ݩʪ��l��
ldapsearch ��O�H LDIF �榡�Ǧ^�Ҧ��j�M���G�C�̹w�]�ȡAldapsearch �Ǧ^���ت���O�W�١A�H�ΩҦ��z�i�HŪ���ݩʡC�z�i�H�]�w�ؿ�s���A�o�˴N�i�H�uŪ�����w�ؿ�ؤW���ݩʤl���C�u���ާ@�ݩʥ��Ǧ^�C�p�G�Q�n�Ǧ^�ާ@�ݩʧ@���j�M�ާ@�����G�A�z�����b�j�M��O����T�a��w���̡C�p�ݦ���ާ@�ݩʪ��ԲӸ�T�A�аѾ\�mDirectory Server Administration Reference�n���� Chapter 11 "Operational Attributes" �C
���]�z���Q�n�ݨ�j�M���G�Ǧ^���Ҧ��ݩʡC�z�i�H�b�j�M�z�ᄍ����ߨ�b��O��W��w�Q�n���ݩʡA�N�Ǧ^���ݩʭ���b�Y�ǯS�w���ݩʽd�C�Ҧp�A�Y�n��ܥؿ�C�Ӷ��ت� cn �M sn �ݩʡA�ШϥΥH�U��O�G
ldapsearch -h myServer -p 5201 -D "cn=directory manager" -w password
"(objectclass=*)" sn cn���d�Ұ��]�z�H LDAP_BASEDN �]�w�j�M��¦�C
�j�M�h�����ݩ�
�j�M�ɡADirectory Server ���@�w�̱ƧǶ��ǶǦ^�h�����ݩʡC�Ҧp�A���]�z�Q�n�j�M cn=config �W���պA�ݩʡA�b�ܧ�ͮĤ��e�ݭn���s�Ұʦ�A���C
ldapsearch -h myServer -p 5201 -D "cn=directory manager" -w password
-b cn=config "(objectclass=*)" nsslapd-requiresrestart�Ǧ^�U�C���G�G
dn:cn=config
nsslapd-requiresrestart:cn=config:nsslapd-port
nsslapd-requiresrestart:cn=config:nsslapd-secureport
nsslapd-requiresrestart:cn=config:nsslapd-plugin
nsslapd-requiresrestart:cn=config:nsslapd-changelogdir
nsslapd-requiresrestart:cn=config:nsslapd-changelogsuffix
nsslapd-requiresrestart:cn=config:nsslapd-changelogmaxentries
nsslapd-requiresrestart:cn=config:nsslapd-changelogmaxage
nsslapd-requiresrestart:cn=config:nsslapd-db-locks
nsslapd-requiresrestart:cn=config:nsslapd-return-exact-case
nsslapd-requiresrestart:cn=config,cn=ldbm database,cn=plugins,
cn=config:nsslapd-allidsthreshold
nsslapd-requiresrestart:cn=config,cn=ldbm database,cn=plugins,
cn=config:nsslapd-dbcachesize
nsslapd-requiresrestart:cn=config,cn=ldbm database,cn=plugins,
cn=config:nsslapd-dbncache
nsslapd-requiresrestart:cn=config,cn=ldbm database,cn=plugins,
cn=config:nsslapd-directory
nsslapd-requiresrestart:cn=encryption,cn=config:nssslsessiontimeout
nsslapd-requiresrestart:cn=encryption,cn=config:nssslclientauth
nsslapd-requiresrestart:cn=encryption,cn=config:nssslserverauth
nsslapd-requiresrestart:cn=encryption,cn=config:nsssl2
nsslapd-requiresrestart:cn=encryption,cn=config:nsssl3
...�p�oةҥܡAnsslapd-requiresrestart �ݩʦ��h�ӭȡC�o�ǭȨS���̱ƧǶ��ǡC�p�G�z�}�o�ݭn�h���ݩ� (��ƧǶ��DZƦC) ��3�ε{���A�нT�w�z��3�ε{���|��榹�ƧǡC
�j�M�ɨϥΥΤ������
���d����ܨϥΪ� cdaniels �ϥΥΤ�����ҷj�M�ؿ�J
ldapsearch -h myServer -p 636 -b "dc=example,dc=com"
-N "cdanielsscertname" -Z -W certdbpassword
-P /home/cdaniels/certdb/cert.db "(givenname=Richard)"LDAP �j�M�z�ᄍ
�j�M�z�ᄍ���j�M�ާ@���n�Ǧ^�����ءC���̬O�̱`�P ldapsearch ��O�椽�ε{���f�t�ϥΪ��z�ᄍ�C�ϥ� ldapsearch �ɡA�z�i�H�ϥ��ɮפ9j��W���C�ӿz�ᄍ�A�b�ɮפ���m�h���j�M�z�ᄍ�A�Ϊ̥i�H�����b��O��W��w�j�M�z�ᄍ�C
�Ҧp�A�U�C�z�ᄍ��w�j�M�@��W�� Lucie Du Bois�G
(cn=Lucie Du Bois)
���j�M�z�ᄍ�Ǧ^�Ҧ��t�@��W�� Lucie Du Bois �����ءC�@��W�٭Ȫ��j�M�P�j�p�g�L��C
�@��W���ݩʦ��M�y�����Ҭ���ȮɡA�|�Ǧ^�Ҧ��ȡC�]���U�C����ݩʳ��ŦX���z�ᄍ�G
cn:Lucie Du Bois
cn;lang-fr:Lucie Du Bois
�j�M�z��y�k
�j�M�z�ᄍ���y�k�O�G
(attribute operator value)
�Ҧp�G
(buildingname>=alpha)
�b���d�Ҥ��Abuildingname �O�ݩʡA>= �O�B��l�A�� alpha �O�ȡC�z�]�i�H�w�q�ϥΤ��P�ݩʻP���L�B��l�զX���z�ᄍ�C
�U�C�U�`��j�M�z�ᄍ���ԲӪ��y�z�G
�ϥηj�M�z�ᄍ�����ݩ�
�j�M���خɡA�z�i�H��w�P�Ӷ������������ݩʡC�Ҧp�A�j�M�H��خɡA�z�i�H�ϥ� cn �ݩʷj�M���S�w�@��W�٪��H��C
�H��ت��ݩʽd�ҥi��]�t�G
�p�ݦC�X�P�������������ݩʡA�аѾ\�mDirectory Server Administration Reference�n�C
�ϥηj�M�z�ᄍ�����B��l
�b �� 2-2 ���C�X�F�i�H�b�j�M�z�ᄍ���ϥΪ��B��l�G
�s�b����j�M�� dn �ݩ� (�Ҧp cn:dn:=John)�A�H�δ��Ѱ�ڤƷj�M�䴩������B��l�C
�ϥνƦX�j�M�z�ᄍ
�p�U�ҥܡA�ϥΦr����ܪk����ܪ����L�B��l�զX�h�طj�M�z�ᄍ����G
(Boolean-operator(filter)(filter)(filter)...}
�䤤 Boolean-operator �O�C�b�� 2-3 �������@�ӥ��L�B��l�C
���L�B��l�i�H�զX�M�_�~�b�@�_�H�Φ�����B�⦡�A�Ҧp�G
(Boolean-operator(filter)(Boolean-operator(filter)(filter)))
�i�H�P�j�M�z�ᄍ�@�_�ϥΪ����L�B��l�]�A�G
���L�B�⦡�����Ǧp�U�G
�ϥ��ɮ�w�j�M�z�ᄍ
�z�i�H�N�j�M�z�ᄍ��J�ɮסA�Ӥ��O��J��O�椤�C�o�˰��ɡA�b�ɮפ����9j��W��w�C�ӷj�M�z�ᄍ�Cldapsearch ���b�ɮפ��X�{�����ǰ��C�@���j�M�C
�Ҧp�A�p�G�ɮץ]�t�G
(sn=Daniels)
(givenname=Charlene)�M�� ldapsearch ���X�Ҧ��]�t�m�� Daniels �����ءA�M��A��X����w�W�� Charlene ���Ҧ����ءC�p�G��쳣�ŦX�o��ӷj�M�ǫh�����ءA�h�Ǧ^���ب⦸�C
�Ҧp�A���]�z�b�W�� searchdb ���ɮפ���w���e���j�M�z�ᄍ�A�ӥB�ϥ� LDAP_BASEDN �]�w�j�M��¦�C�U�C�Ǧ^�Ҧ��ŦX��@�j�M�z�ᄍ�����ءG
ldapsearch -h myServer -p 5201 -D "cn=directory manager" -w password
-f searchdb�z�i�H�ϥΫ�w�Q�n�[�J�j�M�楽�ݪ��ݩʦW�٥H����Ǧ^���ݩʲաC�Ҧp�A�U�C�� ldapsearch ��O��طj�M�����A��O�u�Ǧ^ DN �M�C�Ӷ��ت� givenname �M sn �ݩʡG
ldapsearch -h myServer -p 5201 -D "cn=directory manager" -w password
-f searchdb sn givenname�b�j�M�z�ᄍ����w�t�r���� DN
��j�M�z�ᄍ���� DN �t���@���Ȩ䤤�@���*��r�I�ɡA�z�����H�ϱu (\) �������ӳr���C�Ҧp�A�Y�n�M��b example.com Bolivia, S.A. �𪬤l�ؿ�C�@�ӤH�A�ШϥΤU�C��O�G
ldapsearch -h myServer -p 5201 -D "cn=directory manager" -w password -s base -b "o=example.com Bolivia\, S.A.,dc=example,dc=com" "(objectclass=*)"
�j�M�z�ᄍ�d��
�U�C�j�M���ت��z�ᄍ�t���z���ݩʪ��@�өΦh�ӭȡC�o�]�٬��s�b�j�M�G
(manager=*)
�U�C�j�M���ت��z�ᄍ�t���@�Ϊ��W�� Ray Kultgen�C�o�]�٬��۵��j�M�G
(cn=Ray Kultgen)
�U�C�z�ᄍ�Ǧ^�Ҧ����ءA�o�Ƕ��إ]�A�t���l�r�� X.500 ���y�z�ݩʡG
(description=*X.500*)
�U�C�z�ᄍ�Ǧ^�Ҧ���´���O Marketing�A�H�δy�z��줣�t�l�r�� X.500 �����ءG
(&(ou=Marketing)(!(description=*X.500*)))
�U�C�z�ᄍ�Ǧ^�Ҧ���´���O Marketing�A�ӥB�z��O Julie Fulmer �� Cindy Zwaska ���Ҧ�����
(&(ou=Marketing)(|(manager=cn=Julie Fulmer,ou=Marketing,
dc=example,dc=com)(manager=cn=Cindy Zwaska,ou=Marketing,
dc=example,dc=com)))�U�C�z�ᄍ�Ǧ^���N��H��Ҧ����ءG
(!(objectClass=person))
�Ъ`�N�A���e���z�ᄍ���t�����į�v�T�A�ӥB3�ӧ@������j�M���@���(ϥΡC�U�C�z�ᄍ�Ǧ^�Ҧ����N��H��M�@��W������ printer3b ���Ҧ����ءG
(&(cn~=printer3b)(!(objectClass=person)))
�j�M�ާ@�ݩ�
�p�G�Q�n�Ǧ^�ާ@�ݩʧ@���j�M�ާ@�����G�A�z�����b�j�M��O����T�a��w���̡C
ldapsearch -h myServer -p 5201 -D "cn=directory manager" -w password
"(objectclass=*)" aci�Y�n�^��F��T��w���ާ@�ݩʥH�~���W�h�ݩʡA�Ы�w�ާ@�ݩʰ��~���u*�v�C�Ҧp�G
ldapsearch -h myServer -p 5201 -D "cn=directory manager" -w password
"(objectclass=*)" aci *
�ϥ� DSMLv2 �s��ؿ��U�C�d�ҫ�X�p��ϥ� DSML �n�D�s��M�j�M�ؿ�C�p�ݦ��� DSMLv2 �зǪ� DSML �����ݩʩM��T������M��A�аѾ\�mDirectory Server Administration Reference�n�� Chapter 3 "Frontend Plugin Attributes"�C
���`�]�t�U�C�d�ҡG
�Ъ`�N�A�o�ǽd�Ҥ��� content-length: ���Y�t�� DSMLv2 �n�D����T��סC���F�ϳo�ǽd�ҥ��`�B�@�A�нT�w�z�ϥΪ��s�边��ӳo�Ǥ��e��סA�άO�z�i�H�A��a�ק鷺�e��סC
�ŰΦW DSML �uPing�v�n�D
�̹w�]�Ȱ��� DSML �e�ݡC�p�ݦ���p��ҥΥ�����T�A�аѾ\�u�ҥ� DSML �n�D�v�C�Y�n�ˬd�O�_�ҥ� DSML �e�ݡA�p�N�X�d�� 2-1 �ҥܶǰe�� DSML �妸�n�D�G
�N�X�d�� 2-1
�ŰΦW DSML �n�D
�� DSML �n�D���Ĥ@�q�t���s���ܦh HTTP ���Y�� HTTP ��k�� (POST /dsml HTTP/1.1)�CHTTP ��k���w HTTP ��k�n�D�M DSML �e�ݨϥΪ� URL�CPOST �O DSML �e�ݱ���ߤ@ HTTP ��k�n�D�C/dsml URL �O Directory Server ���w�] URL�A��i�H�ѥ���L���Ī� URL �t�m�C���۪� HTTP ���Y��w DSML �n�D���Ѿl�ԲӸ�T�C
- content-length: 451
��w SOAP/DSML �n�D����T���- HOST: hostMachine
��w���b�p�����D�� Directory Server �W�١C- SOAPAction:
�O�j��ʪ��A�ӥB�q���ؿ�z�Q�n�b HTTP/SOAP ���|�W��� DSML �n�D�C��]�i��d�šC- Content-Type: text/xml
�������w�q���e�� XML �� text/xml �ȡC- Connection: close
�����n�D��A��w��s�u (�w�]�� HTTP/1.1 �B�@�覡�O���s�u�}�ҡC)�n�D����l���,O SOAP/DSML �Ϭq�CDSML �n�D�H XML �e�����Y�}�l�C
<?xml version=’1.0’ encoding=’UTF-8’?>
�oث�w�����H UTF-8 �r�����s�X���n�D�C���Y�᭱���ۧt���j��[�J XML ���c�BXML ���c������M SOAP �W�٪Ŷ����j��d��M�D�餸�!C
DSML �妸�n�D���<аO DSML �妸�n�D���}�l�A�ӥB�᭱�H�Y���۱j��[�J DSMLv2 �W�٪Ŷ��G
xmlns=’urn:oasis:names:tc:DSML:2:0:core’.
�ѥH�U���n�D ID ��ܩʪ��ѧO�n�D
requestID=’Ping!’>
�ŧ妸�n�D
<!-- empty batch request -->
�H XML �@��ѡA�ӥB�ϥ���妸�n�D�B�� SOAP �D��M�� SOAP �d���� SOAP/DSML �妸�n�D�C
�p�G�ҥ� DSML �e�ݡA�h�Ǧ^�Ū� DSML �^3�G
HTTP/1.1 200 OK
Cache-control:no-cache
Connection:close
Date:Mon, 09 Sep 2002 13:56:49 GMT
Accept-Ranges:none
Server:Sun-ONE-Directory/5.2
Content-Type:text/xml; charset="utf-8"
Content-Length: 500
<?xml version=’1.0’ encoding=’UTF-8’ ?>
<soap-env:Envelope
xmlns:xsd=’http://www.w3.org/2001/XMLSchema’
xmlns:xsi=’http://www.w3.org/2001/XMLSchema-instance’
xmlns:soap-env=’http://schemas.xmlsoap.org/soap/envelope/’
>
<soap-env:Body>
<batchResponse
xmlns:xsd=’http://www.w3.org/2001/XMLSchema’
xmlns:xsi=’http://www.w3.org/2001/XMLSchema-instance’
xmlns=’urn:oasis:names:tc:DSML:2:0:core’
requestID=’Ping!’
>
</batchResponse>
</soap-env:Body>
</soap-env:Envelope>
�p�G�S���Ǧ^��ءA�i�H���_�e�ݤw�g���ΡC
�̤j�ƥح���P�ɳs���ܥؿ�M DSML �n�D���ؤo���Τ�ݼƥءC�Τ�ݼƥت������ ds-dsml-poolsize �M ds-dsml-poolmaxsize �ݩʫ�w�A�n�D�j�p����� ds-dsml-requestmaxsize �ݩʫ�w�C�p�ݦ��� DSML �����ݩʪ��ԲӸ�T�A�аѾ\�mDirectory Server Administration Reference�n�� Chapter 2 "Frontend Plugin Attributes"�C
�@���S�w�ϥΪ̵o�X DSML �s���n�D
�Y�n�o�X DSML �n�D�A�z�i�H�H��w���ϥΪ̩ΰΦW����s���ܥؿ�C�Y�n�H��w���ϥΪ̨���s���A�n�D�����]�A HTTP ���v���Y�A�Ӽ��Y�t�� uid �M��M dn ���K�X�C
�ܽd�� HTTP ���v�n�D�p�U�G
POST /dsml HTTP/1.1
content-length: 578
Content-Type:text/xml; charset="utf-8"
HOST:hostMachine
Authorization:Basic ZWFzdGVyOmVnZw==
SOAPAction: ""
Connection:close
<?xml version=’1.0’ encoding=’UTF-8’?>
<soap-env:Envelope
xmlns:xsd=’http://www.w3.org/2001/XMLSchema’
xmlns:xsi=’http://www.w3.org/2001/XMLSchema-instance’
xmlns:soap-env=’http://schemas.xmlsoap.org/soap/envelope/’>
<soap-env:Body>
<batchRequest
xmlns=’urn:oasis:names:tc:DSML:2:0:core’
<extendedRequest>
<requestName>1.3.6.1.4.1.4203.1.11.3</requestName>
</extendedRequest>
</batchRequest>
</soap-env:Body>
</soap-env:Envelope>
�b���d�Ҥ��AHTTP ���v���Y�ǰe uid �� easter �M�K�X�� egg�A�M���a�H easter:egg ��ܡA�ӥB�H base64 �s�X���� Authorization:Basic ZWFzdGVyOmVnZw==�C
<extendedRequest> ���ҥΩ��w LDAP ����@�~�C<requestName> ���ҥΩ��w����@�~�� OID�C�b���d�Ҥ��AOID 1.3.6.1.4.1.4203.1.11.3 �ѧO whoami ����@�~�C�p�ݦ��� whoami ����@�~���ԲӸ�T�A�аѾ\ http://www.ietf.org/internet-drafts/draft-zeilenga-ldap-authzid-08.txt�C
���ΦW�s��A�ΦW�s��`���Y�檺�s���A�ӥB�i���Ʀs����A��ݭn��� HTTP ���v���Y�C�P�˦a�A�z�i�H�o�X DSML �n�D�H LDAP �N�z�v��� LDAP �@�~�C
�]�� DSML �n�D���z�H�妸����¦�A�p�G�z�n�o�� LDAP �N�z�v���n�D�A�һݪ� DSML �N�z���ҭn�D�����O��w�n�D�妸�����Ĥ@�ӡC
DSML �j�M�n�D
�N�X�d�� 2-2 ��ܮ� DSE ���ؤW�� DSML ��¦����j�M�n�D�C
�N�X�d�� 2-2
DSML �j�M�n�D
POST /dsml HTTP/1.1
HOST:hostMachine
Content-Length: 1081
Content-Type:text/xml
SOAPAction: ""
Connection:close
<?xml version=’1.0’ encoding=’UTF-8’?>
<soap-env:Envelope
xmlns:xsd=’http://www.w3.org/2001/XMLSchema’
xmlns:xsi=’http://www.w3.org/2001/XMLSchema-instance’
xmlns:soap-env=’http://schemas.xmlsoap.org/soap/envelope/’
>
<soap-env:Body>
<batchRequest
xmlns=’urn:oasis:names:tc:DSML:2:0:core’
requestID=’Batch of search requests’
>
<searchRequest
dn=""
requestID="search on Root DSE"
scope="baseObject"
derefAliases="neverDerefAliases"
typesOnly="false"
>
<filter>
<present name="objectClass"/>
</filter>
<attributes>
<attribute name="namingContexts"/>
<attribute name="supportedLDAPversion"/>
<attribute name="vendorName"/>
<attribute name="vendorVersion"/>
<attribute name="supportedSASLMechanisms"/>
</attributes>
</searchRequest>
</batchRequest>
</soap-env:Body>
</soap-env:Envelope>
�b���d�Ҥ��G
- dn=""
requestID="search on Root DSE"
��w�� DSE ���ؤU���j�M�@�~�n�D��� (�� DN)�A�ӥB�ѿ�Ϊ��n�D ID �ݩ��ѧO�C- scope="baseObject"
��w�j�M�O��¦����j�M�C- derefAliases="neverDerefAliases"
�j�M�Χ�X�j�M����¦����ɡA��w��3�Ѱ��ѦҪ��O�W�C�o�O Directory Server �䴩���ߤ@ derefAliases �ȡC- typesOnly="false"
��w�n�Ǧ^���ݩʦW�٤Ψ�ȡCtypesOnly="true" �u�Ǧ^�ݩʦW�١C���ݩʪ��w�]�Ȭ����C���ŦX�z�ᄍ�����ءA�̤U�C�ϥΥX�{�� objectclass �z�ᄍ�G
<filter>
<present name="objectClass"/>
</filter>�o���P�� LDAP �z�ᄍ�r�� (objectclass=*)�C�z�ᄍ�᭱���һ��ݩʲM��G
<attributes>
<attribute name="namingContexts"/>
<attribute name="supportedLDAPversion"/>
<attribute name="vendorName"/>
<attribute name="vendorVersion"/>
<attribute name="supportedSASLMechanisms"/>
</attributes>