Documentation Home
> Sun Java System Delegated Administrator 6.4 Administration Guide
Sun Java System Delegated Administrator 6.4 Administration Guide
Book Information
Index
A
C
D
E
F
G
H
I
J
L
M
N
O
P
R
S
T
U
V
W
Preface
Chapter 1 Delegated Administrator Overview
Introduction to Delegated Administrator
Delegated Administrator Utility
Delegated Administrator Console
Delegated Administrator and the LDAP Directory
Scenarios for Provisioning Users
One-Tiered Hierarchy
Two-Tiered Hierarchy
Three-Tiered Hierarchy
Administrator Roles and the Directory Hierarchy
Directory Structure Supporting a One-Tiered Hierarchy
One-Tiered Hierarchy: Default Organization Under the Root Suffix
One-Tiered Hierarchy: Default Organization at the Root Suffix
Directory Structure Supporting a Two-Tiered Hierarchy
Top-Level Administrator Role
Organization Administrator Role
For Former Users of iPlanet Delegated Administrator
Service Packages
Types of Service Packages
Service Bundles
Packages Defined for Particular LDAP Objects
About Groups
Service Packages Provided by Delegated Administrator
Service-Package Tasks
Guidelines for Assigning Service Packages
Creating Your Own Service Packages
Limitations in Viewing an Extended Service Package
Sample Service Package Assigned to an LDAP Entry
Sample Class-of-Service Templates
Mail Service Attributes
User Mail Sample Templates
User Calendar Sample Templates
User Mail and Calendar Sample Templates
Group Mail Sample Templates
Group Calendar Sample Templates
Group Mail and Calendar Sample Templates
Class-of-Service Definitions
Mail Service for Users
Calendar Service for Users
Mail and Calendar Service for Users
Mail Service for Groups
Calendar Service for Groups
Mail and Calendar Service for Groups
Location of Class-of-Service Definitions and Packages
Chapter 2 Planning for Installation and Configuration
Gather Your Delegated Administrator Configuration Information
Delegated Administrator Components
Web Containers
Configuration Information
Run the Sun Java Communications Suite Installer
Run the Directory Server Setup Script
Consolidating ACIs in the Directory
Configure Delegated Administrator
Configure Messaging Server and Calendar Server
Chapter 3 Configuring Delegated Administrator
If You Are Upgrading from a Previous Release of Delegated Administrator
Preserve an Existing Configuration
Delegated Administrator Properties Files
To Preserve an Existing Configuration
Upgrade Customized Service Packages
Sample Class-of-Service Templates
Customized Service Packages
To Upgrade Customized Service Packages
Choose Which Components to Configure
Summary of Configuration Choices
Run the Configuration Program
Launching the Configuration Program
Starting the Configuration
To start the configuration
Configuring the Delegated Administrator Utility
To configure the Delegated Administrator Utility
Configuring the Delegated Administrator Console
Web Server 6.x Configuration
To Configure Web Server 6.x
Web Server 7.x Configuration
To Configure Web Server 7.x
Application Server 7.x Configuration
To configure Application Server 7.x
Application Server 8.x Configuration
To configure Application Server 8.x
Configuring the Delegated Administrator Server
To configure Delegated Administrator Server
Completing the Configuration
To complete the configuration
Restarting the Web Container
Configuration and Log Files Deployed by the config-commda Program
Configuration Files
Log Files
Perform Silent Installation
Run Delegated Administrator Console and Utility
Launching the Console
To launch the Delegated Administrator console
Running the Command-Line Utility
To run the command-line utility
Post-Configuration Tasks
Add Mail and Calendar Services to the Default Domain
Enforce Unique Values for Mail Attributes
To enforce the uniqueness of mail attributes
Create Service Packages
Predefined Class-of-Service Templates
Creating Your Own Service Packages
To create your own service packages
Add ACIs for Schema 2 Compatibility Mode
To add ACIs for Schema 2 compatibility mode
Configuring Web Server to Run Delegated Administrator in SSL Mode
To Configure Web Server 6 to Enable Delegated Administrator to Run in SSL Mode
To Configure Web Server 7.x to Enable Delegated Administrator to Run in SSL Mode
Chapter 4 Customizing Delegated Administrator
Deploying a Customized Configuration File
Original (Standard) Locations of the Configuration Files
Deployed Locations of the Configuration Files
Deployed Location of Delegated Administrator Server File (resource.properties)
Deployed Location of Delegated Administrator Console Configuration Files
To Deploy a Customized Configuration File
Configuration File Deploy Scripts
Configuring the Preferred Mail Host Using the Service-Wide Default
To remove the Preferred Mail Host from the console
Syntax and Values for Security.properties File Properties
Adding Plug-ins for Delegated Administrator
Enabling the Plug-Ins
Plug-In Format
Additional Flat File Required for MailHostStorePlugin
Adding a Custom Object Class When You Create an LDAP Object
To add a custom object class to the user-creation process
Customizing the User Log-In
How the User Log-In Value Is Set
Adding a User Log-In Value
Requiring Service Packages for New Users
To require new users to have a service package assigned to them
Adding a New Calendar Time Zone
To add a new time zone in Delegated Administrator
To display and administer the new time zone in the Delegated Administrator console
To change the default time zone in Delegated Administrator
Preventing New Users from Having Access to Instant Messaging
To disable Instant Messaging service for new users
Chapter 5 Command Line Utilities
Commands
Execution Modes
Command File Format
Command Descriptions
Mandatory commadmin Options
commadmin admin add
Syntax
Options
Examples
commadmin admin remove
Syntax
Options
Example
commadmin admin search
Syntax
Options
Example
commadmin debug log
Syntax
Options
Example
commadmin domain create
Syntax
Options
Example
commadmin domain delete
Syntax
Options
Example
commadmin domain modify
Syntax
Options
Example
commadmin domain purge
To remove users, groups, and Calendar resources from a domain
To remove services from a domain
To permanently remove an entire domain
Syntax
Options
Example
commadmin domain search
Syntax
Options
commadmin group create
Syntax
Options
Example
commadmin group delete
Syntax
Options
Examples
commadmin group modify
Syntax
Options
Examples
commadmin group search
Syntax
Options
Example
commadmin resource create
Syntax
Options
Example
Creating a Resource
commadmin resource delete
Syntax
Options
Example
commadmin resource modify
Syntax
Options
Example
commadmin resource search
Syntax
Options
Example
commadmin user create
Syntax
Options
Example
commadmin user delete
To remove a user
Syntax
Options
Example
commadmin user modify
Syntax
Options
Examples
commadmin user search
Syntax
Options
Example
Appendix A Service Provider Administrator and Service Provider Organizations
Service Provider Administrator
Service Provider Administrator Role
Assigning the SPA Role to a User
Considerations for This Release
Organizations Managed by the Service Provider Administrator
Provider Organization
Full Organization
Shared Organization
Creating a Provider Organization and Service Provider Administrator
Entries Created by the Template
Nodes in the Sample Installed Custom Service-Provider Template
Information Needed to Create a Provider Organization, Subordinate Organization, and SPA
Parameters Defining the Provider and Subordinate Organization
Parameters Defining the SPA
Steps for Creating a Provider Organization and Service Provider Administrator
To create a provider organization and Service Provider Administrator
Custom Service-Provider Template
da.provider.skeleton.ldif File (Relevant Sections)
Creating Shared and Full Subordinate Organizations
To create a shared or full subordinate organization
Sample Service-Provider Organization Data
Organizations Provided by the Sample Data
Logical Hierarchy and the Directory Information Tree
Sample Organization Data: Directory Information Tree View
Nodes in the Sample Directory Information Tree
User DNs in the Sample Directory Information Tree
Appendix B Attribute Values and Calendar Time Zones
Attribute Values
Calendar Time Zone Strings
Appendix C Debugging Delegated Administrator
Debugging the Command-Line Utilities
Delegated Administrator Console Log
To specify your own Delegated Administrator console log file
Delegated Administrator Server Log
Web Container Server Logs
Web Server 6.x
Web Server 7.x
Application Server 7.x
Application Server 8.x
Directory Server and Access Manager Logs
Directory Server
Access Manager
Appendix D Delegated Administrator Performance Tuning
Speed Up Display of Users, Groups, and Organizations
To display the User page more quickly
To display the Group page more quickly
To display the Organization page more quickly
Increase JVM Heap Size
To increase the Web Server 6.x JVM heap size
To increase the Web Server 7.x JVM heap size
To increase the Application Server JVM heap size
Raise Directory Server Indexing Threshold
Appendix E Consolidating ACIs for Directory Server Performance
Introduction
Consolidating and Removing ACIs
replacement.acis.ldif File
Steps for Replacing ACIs
Before You Begin
Replacing ACIs
To replace ACIs
Eliminating Dynamic Organization ACIs
To eliminate dynamic organization ACIs
Analysis of the Existing ACIs
Root Suffix
Access Manager
Top-level Help Desk Admin Role
Top-level Policy Admin Role
AM Self
AM Anonymous
AM Deny Write Access
AM Container Admin Role
Organization Help Desk
AM Organization Admin Role
AM Miscellaneous
Messaging Server
Analysis of How ACIs Are Consolidated
Original Anonymous Access Rights
Consolidated Anonymous Access Rights
Original Self Acis
Consolidated Self Acis
Original Messaging Server ACIs
Consolidated Messaging Server ACIs
Original Organization Admin ACIs
Consolidated Organization Admin ACIs
List of Unused ACIs to be Discarded
Suffix
Top-level Help Desk Admin Role
Top-level Policy Admin Role
Access Manager Anonymous
Access Manager Deny Write Access
Access Manager Container Admin Role
Organization Help Desk
Access Manager Miscellaneous
© 2010, Oracle Corporation and/or its affiliates