Sun ONE Directory Proxy Server Admistrator's Guide |
Contents About This GuideAudience for This Guide
What's in This Guide
Conventions Used in This Guide
Related Information
Accessibility Features
Console Accessibility Features
Accessible names and descriptions
Documentation Accessibility Features
Customizable fonts
Dynamic GUI layout
Keyboard traversable components
Text equivalents for non-text elements
Equivalent command-line interface
Text equivalents for non-text elements
Tables that can be interpreted by assistive technology
Part 1 Introduction to Sun ONE Directory Proxy Server
Chapter 1 Overview of Sun ONE Directory Proxy ServerIntroduction
Directory Proxy Server Feature Set
High Availability
Load Balancing
Failover
Security
Client-Server Compatibility
Chapter 2 Sun ONE Directory Proxy Server Deployment ScenariosAn Internal High Availability Configuration
A Distributed LDAP Directory Infrastructure
Customer Scenario
A Centralized LDAP Directory Infrastructure
Customer Deployment
LDAP Request Flow
Customer Scenario
Deploying Directory Proxy Server with a Single Firewall
Customer Deployment
LDAP Request Flow
Deploying Directory Proxy Server with Two Firewalls
Part 2 Console Based Administration
Chapter 3 Introducing Directory Proxy Server ConsolesGetting Started with Sun ONE Console
Servers and Applications Tab
Accessing the Directory Proxy Server Consoles
Users and Groups Tab
Sun ONE Administration Server
Starting Administration Server
Stopping Administration Server
Step 1. Log In to the Sun ONE Console
Step 2. Open the Appropriate Directory Proxy Server Console
Opening the Directory Proxy Server Server Console
Opening the Directory Proxy Server Configuration Editor Console
Chapter 4 Starting, Restarting, and Stopping Directory Proxy ServerStarting and Stopping Directory Proxy Server
Starting and Stopping Directory Proxy Server From Sun ONE Console
Restarting Directory Proxy Server
Starting and Stopping Directory Proxy Server From Command Line
Starting and Stopping Directory Proxy Server From Windows NT Services Panel
Restarting Directory Proxy Server From Command Line
Reloading Directory Proxy Server From Sun ONE Console on UNIX Platforms
Checking Directory Proxy Server System Status
Checking Directory Proxy Server Status From Sun ONE Console
Starting and Stopping Directory Proxy Server From the Command Line
Checking Directory Proxy Server Status From Command Line
Supported Flags
Restarting Directory Proxy Server
Chapter 5 Creating System Configuration InstancesCreating System Configuration Instances
Saving Configurations
Chapter 6 Creating and Managing GroupsOverview of Groups
Creating Groups
Modifying Groups
Deleting Groups
Chapter 7 Defining and Managing Property ObjectsAttribute Renaming Property
Creating Attribute Renaming Property Objects
Forbidden Entry Property
Creating Forbidden Entry Property Objects
LDAP Server Property
Creating LDAP Server Property Objects
Load Balancing Property
Creating Load Balancing Property Objects
Search Size Limit Property
Creating Search Size Limit Property Objects
Modifying Property Objects
Deleting Property Objects
Chapter 8 Creating and Managing Event ObjectsOverview of Events
Creating Event Objects
Creating OnBindSuccess Event Objects
Modifying Event Objects
Creating OnSSLEstablished Event Objects
Deleting Event Objects
Chapter 9 Creating and Managing Action ObjectsOverview of Actions
Creating Action Objects
Modifying Action Objects
Deleting Action Objects
Chapter 10 Configuring and Monitoring LogsOverview of Logging
System Log
Configuring Logs
Audit Log
Step 1. Define The Log Settings
Monitoring Logs From Directory Proxy Server Server Console
Step 2. Specify the Logging Property to Use
Chapter 11 Configuring SecurityPreparing to Set Up SSL and TLS
Setting up SSL or TLS with an Internal Security Device
Setting Up SSL Communication
Setting up SSL or TLS with an External Security Device
Setting Up SSL with Internal and External Security Devices
Step 1. Install a Server Certificate for Directory Proxy Server
SSL Certificates
Step A. Generating a Server Certificate Request
Step 2. Set Up SSL Connections Between Directory Proxy Server and Clients
Step B. Sending a Server Certificate Request
Step C. Installing the Certificate
Step D. To Install a CA Certificate or Server Certificate Chain
Step E. Backing Up and Restoring Your Certificate Database
Step A. Add Directory Proxy Server CA Certificate to Clients' Trust Databases
Step 3. Set Up SSL Connections Between Directory Proxy Server and LDAP Servers
Step B. Make Changes to the Directory Proxy Server System Configuration
Step C. Make Changes to the Directory Proxy Server Network Groups
Step A. To Install a CA Certificate or Server Certificate Chain
Step B. Add Directory Proxy Server CA Certificate to the LDAP Servers' Trust Databases
Step C. Make Changes to the LDAP Server Properties
Appendix A Directory Proxy Server Decision FunctionsEstablishing Group on Connection
Change Group on Bind
Configuring Change Group On Bind
Change Group on Establishment of TLS
High Availability Setup
Following Referrals
Appendix B Directory Proxy Server FAQ, Features, and TroubleshootingDirectory Proxy Server FAQ
Directory Proxy Server Features
Troubleshooting
Appendix C Directory Proxy Server Startup Configuration FileConfiguration File Overview
Startup Configuration's Keywords
configuration_url
configuration_bind_dn
configuration_bind_pw
configuration_username
sasl_bind_mechanism
Appendix D Command Referencedpsconfig2ldif
dpsldif2config
Pre-conditions:
Post-Conditions: