Documentation Home
> Sun Directory Services 3.1 Administration Guide
Sun Directory Services 3.1 Administration Guide
Book Information
Preface
Chapter 1 Introduction to Directory Concepts
Directory Information
Directory Entries
Distinguished Name and Relative Distinguished Name
Aliasing
Alias Entries and Searching
Alias Entries and Authentication
Directory Structure
Directory Information Tree
Data Stores and Naming Contexts
Infrastructure Information
Schema
Knowledge Information and Referrals
Access Control
Permission Levels
Defining Rules for Entries and Attributes
Binding to the Directory
Default Access Control Rules
Replication
Chapter 2 Sun Directory Services Components and Architecture
Sun Directory Services Architecture
Sun Directory Services Components
LDAP Server
LDAP Replication Service
NIS Server
RADIUS Server
Administration Console
Configuration Files
Java Directory Editor (Deja)
Btree Database
Web Gateway
Administration Utilities
SNMP Agents
Sun Directory Services Security
Security Protocols in the LDAP Server
SASL
Secure Socket Layer (SSL)
RADIUS Server Encryption
Password Encryption
Chapter 3 Planning a Directory Service
Types of Information
Creating Naming Contexts
Example: Naming Contexts in XYZ Corporation
Location of Information on Servers
Setting Up a Replication Strategy
Simple and Cascading Replication
Replication Methods
Example: Replication in the XYZ Corporation
Referrals
Chapter 4 Configuring a Directory Server
Logging In for the First Time
Displaying the Admin Console
To Start the Admin Console Application
To Display the Admin Console Remotely through a Web Server
To Display the Admin Console Locally without a Web Server
Minimal Configuration
Starting and Stopping Services
Configuring Security
Specifying the Administrator Name and Password
Specifying the Encryption Method
Specifying the Security Mode
Configuring LDAP Parameters
Configuring the Data Store
To Rename the Default Data Store
Creating or Modifying a Data Store
Naming Contexts
Caching
Congestion Thresholds
To Create a Data Store
To Modify a Data Store or Naming Context
Indexing Directory Data
To Create Indexes
Backing Up and Restoring a Data Store
To Back Up a Data Store
To Restore a Data Store
Configuring Access Control
Configuring Default Access
To Add an Access Control Rule
To Modify an Access Control Rule
To Delete an Access Control Rule
To Reorder Access Control Rules
Configuring Logging
Backing Up and Restoring the Configuration
To Back Up the Configuration
To Restore a Configuration
Displaying Server Characteristics
Using the DN Editor
Regular Expressions in Distinguished Names
To Create a Distinguished Name with the DN Editor
To Modify a Distinguished Name with the DN Editor
Using the Filter Editor
To Create an LDAP Filter
To Modify an LDAP Filter
Chapter 5 Loading and Maintaining Directory Information
Creating the Root Entry
To Create the Root Entry for XYZ Corporation
Populating the Directory
Mapping Syntax and Semantics
Mapping Semantics
Common Section
BASE_DN
MAP_NAME
PRIVATE_OBJECTCLASSES
Dynamic Section
LINE
MATCH_FILTER
ALL_FILTER
DC_NAMING
Export Section
Import Section
Mapping Syntax
Common
Dynamic
Extract
Condense
split Function
string2instances Function
instances2string Function
trim Function
getrdn Function
exclude Function
Build
Example: Using dsimport
Input File
Mapping File
Running dsimport
Data Management
Adding Entries
Modifying Entries
Deleting Entries
Directory Maintenance
Regenerating Indexes
Regenerating the Database
Checking Log Files
Using dejasync
Chapter 6 Using the Directory as an NIS Server
Migrating from NIS to Sun Directory Services
NIS-LDAP Functional Equivalence
dsservd
dsyppasswdd
dsypxfrd
dsyppush
dsypxfr
dsmakedbm
dsypinit
dsyprsvd
Initializing the Sun Directory Services NIS Service
To Initialize the NIS Service
Configuring the NIS Service
Updating NIS Tables
Propagating NIS Tables
Standard NIS Replication
LDAP Replication
NIS Information in the LDAP Directory
NIS Naming Contexts
NIS Information Mapping
Object Class and Attributes
aliases
bootparams
ethers
group
hosts
netgroup
networks
passwd
protocols
rpc
ypservers
ACLs on NIS Information
Configuring Naming Contexts
Case-Sensitivity
Chapter 7 Using the RADIUS Server
RADIUS Authentication Architecture
RADIUS Accounting
RADIUS Entries in the Directory
Initializing the RADIUS Server
Configuring the RADIUS Server
Advanced Configuration of RADIUS Searches
Providing Temporary Access
Restricting Access through a Specified NAS
Combining Temporary Access and NAS Restriction
Managing Virtual Domains
Processing Order for RADIUS Search Parameters
Specifying a Dictionary File
To Specify a Dictionary File for a NAS
Configuring Dynamic Accounting
To Create a Dynamic Accounting Attribute
To Specify an acctattr File for a NAS
ACLs on RADIUS Information
RADIUS-to-LDAP Mapping
Default Mapping
Extending the Default Mapping
Creating RADIUS-LDAP Mapping Definitions
Chapter 8 Configuring the Directory Schema
Schema Definition
Displaying the Current Schema
Displaying the Schema with ldapsearch
Displaying the Schema in the Admin Console
Modifying the Schema
Schema Checking
To Create a New Object Class
To Create a New Attribute
To Add an Attribute to an Object Class
Object Class Reference
Attribute Reference
Chapter 9 Implementing Replication
How Replication Works
Setting Up Replication
Operations to Perform on the Master Server
To Create Replicas
To Set Up a Replication Synchronization Schedule for a Master Server
To Start Replication At Any Time from a Master Server
Operations to Perform on Slave Servers
To Configure Pull Replication
To Set Up a Replication Synchronization Schedule for a Slave Server
To Start Replication At Any Time from a Slave Server
Initializing Replication
Chapter 10 Managing the Directory Services
Starting the Sun Directory Services
Stopping the Sun Directory Services
Monitoring Directory Services with SNMP
Starting and Stopping the SNMP Agents
Configuring the SNMP Agents
Directory Server Statistics
Information Collected by dsnmpserv
Information Collected by dsservd
To Monitor Directory Server Statistics
RADIUS Server Statistics
Information Collected
Displaying RADIUS Server Statistics
The Web Gateway
Configuring the Web Gateway
Index
A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
R
S
T
U
V
W
X
Y
© 2010, Oracle Corporation and/or its affiliates