|Previous Contents Index Next|
|iPlanet Meta-Directory Configuration and Administration Guide|
Chapter 17 Managing Servers and Permissions
In order to access Directory Server or an Oracle database through the Meta-Directory interface, it needs to be configured as part of Meta-Directory's navigation tree. As well, access permissions need to be set or modified. This chapter contains the following sections:
Configuring Data Servers
Meta-Directory has the ability to connect to a number of servers for a number of functions. These servers can be added as external data sources or to hold LDAP-configured connector views or meta views. Installing a Directory Server or an Oracle database as an addition to the Meta-Directory navigation tree is accomplished from the Data Servers panel. Typically, you would choose the server type and then configure it.
Accessing the Data Servers Window
From the Meta-Directory console, choose the Configuration tab.
Select Meta-Directory in the navigation tree.
Click the Data Servers tab.
- The Data Servers window appears.
To Add a New Data Server
In the Data Servers window, click New.
Select the type of server (Directory Server or Oracle) you want to add and click OK.
- The Data Server Type dialog box appears.
On the General tab, provide values or change the defaults as needed for the following fields:
- The server appears in the list box and, by default, it is selected. Depending on the type of server being added, either four (Directory Server) or five (Oracle) additional tabs appear at the bottom of the panel. These tabs enable you to name and configure the new server.
Note If you choose Oracle in Step 2, go to Chapter 12 "Configuring the Database Connector" to continue configuring your server. If you choose Netscape Directory Server in Step 2, continue with Step 3.
Select the new server, and click Test to test the connection.
- The name of the new server appears under the Name column in the top window of the panel.
From the Tuning tab, provide values or change the defaults as needed for the following operational fields:
- A Test Connect Succeeded message appears if the connection was successful. If the test was unsuccessful, make sure the connection information is correct.
Maximum Operation Result Time
Maximum Number of Retries
Enter the maximum number of times you want the server to attempt to connect after an inital failure. A value of 0 indicates an infinite number of times. This field is associated with the Retry Intervals field.
Enter a comma-separated list of numbers, each representing the number of seconds to wait before the next retry should begin. For example, if you provided a value of 10 for Maximum Number of Retries, and 30,300,600,3600 for Retry Intervals, the system would respond as follows:
"If the LDAP server or database becomes unavailable, retry at most 10 times, beginning 30 seconds after the loss of connection is noted, then 5 minutes later, then 10 minutes later, then hourly. If the 10th retry fails, report an error."
Click the Data Change Notification System (DCNS) Schedule tab. This option allows you to schedule when the join engine will look for changes in the change log. Provide values or change the defaults for the following fields:
On the Binary Attribute window, check the binary list and, if necessary, make changes to specify which binaries you want the join engine to recognize. These are the changes you can make:
- You can use either a single number as just described or an expression as follows:
* */step x-y
Both x and y are greater than or equal to the minimum allowed value.
x-y/step x x/step x,y,z... x-y,z-q
To create a new attribute, click New. A blank field appears at the bottom of the drop-down list. Type in the name of the attribute in this field.Click Save to save the configuration.
To Test a Data Server Connection
In the Data Servers window, select the data server whose connection you want to test.
- If the connection was successful, a message confirming this appears. If the connection was unsuccessful, check your server's host information and re-test.
To Delete a Data Server
In the Data Servers window, select the data server you want to delete.
- The data server and its associated configuration disappear from the list box.
Setting Access Permissions
From iPlanet Console, access permissions can be set for individual servers.
To Set Access Permissions
From iPlanet Console, select a Meta-Directory component or server, and right-click.
Choose Set Access Permissions.
- A context menu appears.
Edit access permission as needed:
- The Set Permission Dialog appears with a list of the names of users and groups who currently have access permissions for the selected object. By default, the Configuration Administrators group has unrestricted access to all servers (but not to user data), although its name does not appear on this list.
To allow access permission to additional users or groups, select the user or group name, then click Add User.When you have finished adding and deleting users, click OK.
Previous Contents Index Next
Copyright © 2002 Sun Microsystems, Inc. All rights reserved.
Last Updated April 08, 2002