SunTM Directory Services offers a global directory and naming service. The product contains:
A Lightweight Directory Access Protocol (LDAP) server, compliant with the LDAP v3 Internet standards
An LDAP replication service
A Network Information System (NIS) server, that integrates into an existing NIS environment to provide an integrated naming service
A Remote Access Dialup User Service (RADIUS) server that provides authentication for remote users connecting to the network through a Network Access Server (NAS), and also provides accounting services
A JavaTM administration console that offers local and remote configuration and management
A Java directory editor, called Deja, for maintaining directory information
A web gateway that offers access to the directory from any web browser
A set of administration commands, including data import and export utilities
SNMP agents for monitoring by a management application
The Sun Directory Services also offer the following security features:
Optionally, encryption of communications between client and server using SSL
Strong authentication in bind through the SASL protocol
Password encryption in RADIUS transactions
The Sun Directory Services 3.1 Administration Guide describes the configuration and management tasks that need to be performed to maintain directory information and operate a directory service. It also describes how to integrate the NIS server provided as part of the Sun Directory Services into a NIS environment.
This book is intended for directory server administrators.
Sun Directory Services 3.1 Administration Guide is organized as follows:
Chapter 1, Introduction to Directory Concepts describes the concepts governing a global and distributed directory service.
Chapter 2, Sun Directory Services Components and Architecture briefly describes the overall architecture and the individual components of the Sun Directory Services.
Chapter 3, Planning a Directory Service provides guidelines for organizing the structure of the directory according to the type of information you want to store in it.
Chapter 4, Configuring a Directory Server describes the default configuration of Sun Directory Services and the configuration tasks that you can perform to tailor the configuration to meet your specific needs.
Chapter 5, Loading and Maintaining Directory Information describes how to populate and maintain the database.
Chapter 6, Using the Directory as an NIS Server explains how to use the directory server to replace an NIS server. It contains configuration information for the NIS service.
Chapter 7, Using the RADIUS Server explains how to use the directory to authenticate users through the RADIUS protocol. It contains configuration information for the RADIUS service.
Chapter 8, Configuring the Directory Schema explains how to modify the default schema, and also provides an object class and attribute reference for the default schema.
Chapter 9, Implementing Replication explains how to set up a replication plan for distributing directory information.
Chapter 10, Managing the Directory Services describes how to start and stop the directory services, and how to gather statistics and accounting information from the SNMP agents supplied with Sun Directory Services.
The document set for Sun Directory Services 3.1 also contains:
Sun Directory Services 3.1 User's Guide
Sun Directory Services is based on the following Internet standards and proposed standards:
RFC 1777 Lightweight Directory Access Protocol
RFC 1778 The String Representation of Standard Attribute Syntaxes
RFC 2138 Remote Authentication Dial In User Service
RFC 2139 RADIUS Accounting
RFC 1565 Network Services Monitoring MIB
RFC 1567 X.500 Directory Monitoring MIB
RFC 2222 Simple Authentication and Security Layer
RFC 2251 Lightweight Directory Access Protocol (v3)
RFC 2252 Lightweight Directory Access Protocol (v3) Attribute Syntax Definitions
RFC 2253 Lightweight Directory Access Protocol (v3) UTF-8 String Representation of Distinguished Names
RFC 2254 The String Representation of LDAP Search Filters
RFC 2255 The LDAP URL Format
RFC 2256 A Summary of the X.500(96) User Schema for Use with LDAPv3
RFC 1274 The COSINE and Internet X.500 Schema
draft-byrne-alias-00.txt
draft-howard-nis-schema-04.txt
draft-ietf-asid-ldapv3-referral-00.txt
draft-ietf-asid-ldapv3-tls-02.txt
draft-ietf-asid-ldapv3-lang-02.txt
draft-ietf-asid-ldapv3-ext-04.txt
draft-ietf-asid-ldif-02.txt
draft-ietf-radius-auth-servmib-01.txt
draft-ietf-radius-acc-servmib-01.txt
draft-ryan-java-00.txt
Sun Directory Services supports the following OSI standards:
ITU-T X.500 1988 Recommendations
ITU-T X.208 Abstract Syntax Notation One (ASN.1)
ITU-T X.209 Basic Encoding rules (BER)
The SunDocsSM program provides more than 250 manuals from Sun Microsystems, Inc. If you live in the United States, Canada, Europe, or Japan, you can purchase documentation sets or individual manuals using this program.
For a list of documents and how to order them, see the catalog section of the SunExpressTM Internet site at http://www.sun.com/sunexpress.
The docs.sun.com Web site enables you to access Sun technical documentation online. You can browse the docs.sun.comarchive or search for a specific book title or subject. The URL is http://docs.sun.com/.
The following table describes the typographic changes used in this book.
Table P-1 Typographic Conventions
Typeface or Symbol |
Meaning |
Example |
---|---|---|
AaBbCc123 |
The names of commands, files, and directories; on-screen computer output |
Edit your .login file. Use ls -a to list all files. machine_name% You have mail.
|
AaBbCc123 |
What you type, contrasted with on-screen computer output |
machine_name% su Password: |
AaBbCc123 |
Command-line placeholder: replace with a real name or value |
To delete a file, type rm filename. |
AaBbCc123 |
Book titles, new words or terms, or words to be emphasized |
Read Chapter 6 in User's Guide. These are called class options. You must be root to do this. |
The following table shows the default system prompt and superuser prompt for the C shell, Bourne shell, and Korn shell.
Table P-2 Shell Prompts
Shell |
Prompt |
---|---|
C shell prompt |
machine_name% |
C shell superuser prompt |
machine_name# |
Bourne shell and Korn shell prompt |
$ |
Bourne shell and Korn shell superuser prompt |
# |