Preface
SunTM Directory Services offers a global directory and naming service. The product contains:
-
A Lightweight Directory Access Protocol (LDAP) server, compliant with the LDAP v3 Internet standards
-
An LDAP replication service
-
A Network Information System (NIS) server, that integrates into an existing NIS environment to provide an integrated naming service
-
A Remote Access Dialup User Service (RADIUS) server that provides authentication for remote users connecting to the network through a Network Access Server (NAS), and also provides accounting services
-
A JavaTM administration console that offers local and remote configuration and management
-
A Java directory editor, called Deja, for maintaining directory information
-
A web gateway that offers access to the directory from any web browser
-
A set of administration commands, including data import and export utilities
-
SNMP agents for monitoring by a management application
The Sun Directory Services also offer the following security features:
-
Optionally, encryption of communications between client and server using SSL
-
Strong authentication in bind through the SASL protocol
-
Password encryption in RADIUS transactions
The Sun Directory Services 3.1 Administration Guide describes the configuration and management tasks that need to be performed to maintain directory information and operate a directory service. It also describes how to integrate the NIS server provided as part of the Sun Directory Services into a NIS environment.
This book is intended for directory server administrators.
How This Book Is Organized
Sun Directory Services 3.1 Administration Guide is organized as follows:
Chapter 1, Introduction to Directory Concepts describes the concepts governing a global and distributed directory service.
Chapter 2, Sun Directory Services Components and Architecture briefly describes the overall architecture and the individual components of the Sun Directory Services.
Chapter 3, Planning a Directory Service provides guidelines for organizing the structure of the directory according to the type of information you want to store in it.
Chapter 4, Configuring a Directory Server describes the default configuration of Sun Directory Services and the configuration tasks that you can perform to tailor the configuration to meet your specific needs.
Chapter 5, Loading and Maintaining Directory Information describes how to populate and maintain the database.
Chapter 6, Using the Directory as an NIS Server explains how to use the directory server to replace an NIS server. It contains configuration information for the NIS service.
Chapter 7, Using the RADIUS Server explains how to use the directory to authenticate users through the RADIUS protocol. It contains configuration information for the RADIUS service.
Chapter 8, Configuring the Directory Schema explains how to modify the default schema, and also provides an object class and attribute reference for the default schema.
Chapter 9, Implementing Replication explains how to set up a replication plan for distributing directory information.
Chapter 10, Managing the Directory Services describes how to start and stop the directory services, and how to gather statistics and accounting information from the SNMP agents supplied with Sun Directory Services.
Related Books
The document set for Sun Directory Services 3.1 also contains:
-
Sun Directory Services 3.1 User's Guide
Standards Reference
Sun Directory Services is based on the following Internet standards and proposed standards:
-
RFC 1777 Lightweight Directory Access Protocol
-
RFC 1778 The String Representation of Standard Attribute Syntaxes
-
RFC 2138 Remote Authentication Dial In User Service
-
RFC 2139 RADIUS Accounting
-
RFC 1565 Network Services Monitoring MIB
-
RFC 1567 X.500 Directory Monitoring MIB
-
RFC 2222 Simple Authentication and Security Layer
-
RFC 2251 Lightweight Directory Access Protocol (v3)
-
RFC 2252 Lightweight Directory Access Protocol (v3) Attribute Syntax Definitions
-
RFC 2253 Lightweight Directory Access Protocol (v3) UTF-8 String Representation of Distinguished Names
-
RFC 2254 The String Representation of LDAP Search Filters
-
RFC 2255 The LDAP URL Format
-
RFC 2256 A Summary of the X.500(96) User Schema for Use with LDAPv3
-
RFC 1274 The COSINE and Internet X.500 Schema
-
draft-byrne-alias-00.txt
-
draft-howard-nis-schema-04.txt
-
draft-ietf-asid-ldapv3-referral-00.txt
-
draft-ietf-asid-ldapv3-tls-02.txt
-
draft-ietf-asid-ldapv3-lang-02.txt
-
draft-ietf-asid-ldapv3-ext-04.txt
-
draft-ietf-asid-ldif-02.txt
-
draft-ietf-radius-auth-servmib-01.txt
-
draft-ietf-radius-acc-servmib-01.txt
-
draft-ryan-java-00.txt
Sun Directory Services supports the following OSI standards:
-
ITU-T X.500 1988 Recommendations
-
ITU-T X.208 Abstract Syntax Notation One (ASN.1)
-
ITU-T X.209 Basic Encoding rules (BER)
Ordering Sun Documents
The SunDocsSM program provides more than 250 manuals from Sun Microsystems, Inc. If you live in the United States, Canada, Europe, or Japan, you can purchase documentation sets or individual manuals using this program.
For a list of documents and how to order them, see the catalog section of the SunExpressTM Internet site at http://www.sun.com/sunexpress.
Accessing Sun Documentation Online
The docs.sun.com Web site enables you to access Sun technical documentation online. You can browse the docs.sun.comarchive or search for a specific book title or subject. The URL is http://docs.sun.com/.
What Typographic Changes Mean
The following table describes the typographic changes used in this book.
Table P-1 Typographic Conventions|
Typeface or Symbol |
Meaning |
Example |
|---|---|---|
|
AaBbCc123 |
The names of commands, files, and directories; on-screen computer output |
Edit your .login file. Use ls -a to list all files. machine_name% You have mail.
|
|
AaBbCc123 |
What you type, contrasted with on-screen computer output |
machine_name% su Password: |
|
AaBbCc123 |
Command-line placeholder: replace with a real name or value |
To delete a file, type rm filename. |
|
AaBbCc123 |
Book titles, new words or terms, or words to be emphasized |
Read Chapter 6 in User's Guide. These are called class options. You must be root to do this. |
Shell Prompts in Command Examples
The following table shows the default system prompt and superuser prompt for the C shell, Bourne shell, and Korn shell.
Table P-2 Shell Prompts|
Shell |
Prompt |
|---|---|
|
C shell prompt |
machine_name% |
|
C shell superuser prompt |
machine_name# |
|
Bourne shell and Korn shell prompt |
$ |
|
Bourne shell and Korn shell superuser prompt |
# |
- © 2010, Oracle Corporation and/or its affiliates