Preface
The Directory Server Deployment Planning Guide contains the information you need in order to plan your directory deployment, and to make up front decisions on issues such as data types, access control, replication, and sizing.
This preface contains the following sections:
Before performing any of the tasks described in this guide, read the Directory Server Release Notes.
Who Should Read This Guide
This guide is intended for directory decision-makers, solution designers, and administrators.
The author of this guide assumes you are familiar with the following:
- Specifications for LDAP and related protocols
- Clustering model (if you are using Directory Server with Sun Cluster software)
- Internet and World Wide Web technologies
How This Guide Is Organized
This guide is divided into these chapters:
Provides an overview of the Directory Server architecture, and describes at a high level the design and deployment process.
Describes the issues and strategies behind planning and accessing directory data.
Describes the schema design process, including mapping data to the default schema, customizing the schema, and maintaining data consistency.
Outlines the steps for designing a directory tree, including grouping directory entries and managing attributes.
Describes how to plan your directory topology, including the distribution of data, referrals, and chaining.
Provides an overview of replication concepts and discusses the use of replication in your deployment.
Describes how to analyze your security needs and explains how to design your directory to meet those needs.
Examines what an effective monitoring strategy should include, and presents the monitoring features provided with Directory Server.
Provides architectural strategies that outline the role of the physical location of your data, how and where this data is replicated, what you can do to minimize failures, and how to react when failures do occur.
Suggests ways of estimating disk and memory requirements for a Directory Server instance. It also touches on network and SSL accelerator hardware requirements.
Using the Documentation
The Directory Server manuals are available as online files in Portable Document Format (PDF) and Hypertext Markup Language (HTML) formats. Both formats are readable by assistive technologies for users with disabilities. The Sun documentation web site can be accessed here:
http://docs.sun.com
The Directory Server documentation set can be accessed here:
http://docs.sun.com/coll/DirectoryServer_04q2
Table 1 briefly describes each document in the set. The left column provides the name and Web location of each document. The right column describes the general contents of the document.
Table 1 Directory Server Documentation
Document
|
Contents
|
Directory Server Release Notes
http://docs.sun.com/doc/817-5216
|
Contains the latest information about Directory Server, including known problems.
|
Directory Server Technical Overview
http://docs.sun.com/doc/817-5217
|
Provides a quick look at many key features of Directory Server.
|
Directory Server Deployment Planning Guide
http://docs.sun.com/doc/817-5218
|
Explains how to plan directory topology, data structure, security, and monitoring, and discusses example deployments.
|
Directory Server Installation and Migration Guide
http://docs.sun.com/doc/817-5219
|
Covers update, upgrade, and data migration procedures for moving to the latest version of Directory Server.
|
Directory Server Performance Tuning Guide
http://docs.sun.com/doc/817-5220
|
Provides tips and explanations you can use to optimize Directory Server performance.
|
Directory Server Administration Guide
http://docs.sun.com/doc/817-5221
|
Gives the procedures for using the console and command-line to manage your directory contents and configure every feature of Directory Server.
|
Directory Server Administration Reference
http://docs.sun.com/doc/817-5235
|
Details the Directory Server configuration parameters, commands, files, error messages, and schema.
|
Directory Server Plug-In Developer’s Guide
http://docs.sun.com/doc/817-5222
|
Demonstrates how to develop Directory Server plug-ins.
|
Directory Server Plug-In Developer’s Reference
http://docs.sun.com/doc/817-5223
|
Details the data structures and functions of the Directory Server plug-in API.
|
Conventions
Table 2 describes the typeface conventions used in this guide.
Table 2 Typeface Conventions
Typeface
|
Meaning
|
Examples
|
AaBbCc123
(Monospace)
|
API and language elements, HTML tags, web site URLs, command names, file names, directory path names, on-screen computer output, sample code.
|
Edit your .login file.
Use ls -a to list all files.
% You have mail.
|
AaBbCc123
(Monospace bold)
|
What you type, as contrasted with on-screen computer output.
|
% su
Password:
|
AaBbCc123
(Italic)
|
Book titles.
New words or terms.
Words to be emphasized.
Command-line variables to be replaced by real names or values.
|
Read Chapter 6 in the Developer’s Guide.
These are called class options.
You must be superuser to do this.
The file is located in the ServerRoot directory.
|
Table 3 describes placeholder conventions used in this guide.
Table 3 Placeholder Conventions
Item
|
Meaning
|
Examples
|
install-dir
|
Placeholder for the directory prefix under which software binaries reside after installation.
|
The default install-dir on Solaris systems is /.
|
ServerRoot
|
Placeholder for the directory where server instances and data reside.
You can manage each server under a ServerRoot remotely through your client-side Server Console. The Server Console uses the server-side Administration Server to perform tasks that must execute directly on the server-side system.
|
The default ServerRoot directory is /var/opt/mps/serverroot.
|
slapd-serverID
|
Placeholder for the directory where a specific server instance and its associated data resides by default.
|
The default serverID is the host name.
|
Table 4 describes the symbol conventions used in this book.
Table 4 Symbol Conventions
Symbol
|
Meaning
|
Notation
|
Example
|
[ ]
|
Contain optional command options.
|
O[n]
|
�O4, �O
|
{ }
|
|
Contain a set of choices for a required command option.
Separates command option choices.
|
d{y|n}
|
�dy
|
+
|
Joins simultaneous keystrokes in keyboard shortcuts that are used in a graphical user interface.
|
|
Ctrl+A
|
-
|
Joins consecutive keystrokes in keyboard shortcuts that are used in a graphical user interface.
|
|
Esc-S
|
>
|
Indicates menu selection in a graphical user interface.
|
|
File > New
File > New > Templates
|
Table 5 describes the shell prompt conventions used in this book.
Table 5 Shell Prompts
Shell
|
Prompt
|
C shell
|
machine-name%
|
C shell superuser
|
machine-name#
|
Bourne shell and Korn shell
|
$
|
Bourne shell and Korn shell superuser
|
#
|
Input and output of Directory Server commands are usually expressed using the LDAP Data Interchange Format (LDIF) [RFC 2849] . Lines are wrapped for readability.
Resources and Tools on the Web
The following location contains information about Java Enterprise System and its component products such as Directory Server:
http://wwws.sun.com/software/learnabout/enterprisesystem/index.html
Some supported platforms provide native tools for accessing Directory Server. For more tools useful when testing and maintaining LDAP directory servers, download the Sun Java System Directory Server Resource Kit (DSRK). This software is available at the following location:
http://wwws.sun.com/software/download/
Installation instructions and reference documentation for the DSRK tools is available in the Directory Server Resource Kit Tools Reference.
For developing directory client applications, you may also download the Sun Java System Directory SDK for C and the Sun Java System Directory SDK for Java from the same location.
Additionally, Java Naming and Directory Interface (JNDI) technology supports accessing Directory Server using LDAP and DSML v2 from Java applications. Information about JNDI is available from:
http://java.sun.com/products/jndi/
The JNDI Tutorial contains detailed descriptions and examples of how to use JNDI. It is available at:
http://java.sun.com/products/jndi/tutorial/
Third-party URLs are included in this document to provide additional, related information.
|
Note
|
Sun is not responsible for the availability of third-party Web sites mentioned in this document. Sun does not endorse and is not responsible or liable for any content, advertising, products, or other materials that are available on or through such sites or resources. Sun will not be responsible or liable for any actual or alleged damage or loss caused by or in connection with the use of or reliance on any such content, goods, or services that are available on or through such sites or resources.
|
|
How to Report Problems
If you have problems with Directory Server, contact Sun customer support using one of the following mechanisms:
This site has links to the Online Support Center and ProductTracker, as well as to maintenance programs and support contact numbers.
This site includes patches, support documents, security information, and the Sun System Handbook.
So that we can best assist you in resolving problems, please have the following information available when you contact support:
- Description of the problem, including the situation where the problem occurs and its impact on your operation
- Machine type, operating system version, and product version, including any patches and other software that might be affecting the problem
- Detailed steps on the methods you have used to reproduce the problem
- Any error logs or core dumps
Sun Welcomes Your Comments
Sun is interested in improving its documentation and welcomes your comments and suggestions. Use the web-based form to provide feedback to Sun:
Please provide the full document title and part number in the appropriate fields. The part number is a seven-digit or nine-digit number that can be found on the title page of the book or at the top of the document. For example, the part number of this Deployment Planning Guide is 817-5218-10.