| Skip Navigation Links | |
| Exit Print View | |
|
Oracle Directory Server Enterprise Edition Man Page Reference 11g Release 1 (11.1.1.5.0) |
| Skip Navigation Links | |
| Exit Print View | |
|
|
Oracle Directory Server Enterprise Edition Man Page Reference 11g Release 1 (11.1.1.5.0) |
Directory Server Configuration
all-ids-threshold-pres(5dsconf)
all-ids-threshold-sub(5dsconf)
db-batched-transaction-count(5dsconf)
db-checkpoint-interval(5dsconf)
def-repl-manager-pwd-file(5dsconf)
ds5BeginReplicaAcceptUpdates(5dsconf)
ds5ReferralDelayAfterInit(5dsconf)
ds5ReplicaAutomaticInit(5dsconf)
ds5ReplicaConsumerTimeout(5dsconf)
ds5ReplicaTransportCompressionLevel(5dsconf)
ds5ReplicaTransportConcurrencyLevel(5dsconf)
ds5ReplicaTransportGroupSize(5dsconf)
ds5ReplicaTransportGrpPktSize(5dsconf)
ds5ReplicaTransportWindowSize(5dsconf)
dsChangelogMaxentries(5dsconf)
dsFilterSPConfigchecksum(5dsconf)
ds-hdsml-clientauthmethod(5dsconf)
ds-hdsml-dsmlschemalocation(5dsconf)
ds-hdsml-iobuffersize(5dsconf)
ds-hdsml-requestmaxsize(5dsconf)
ds-hdsml-responsemsgsize(5dsconf)
ds-hdsml-soapschemalocation(5dsconf)
dsml-client-auth-mode(5dsconf)
dsml-max-parser-count(5dsconf)
dsml-min-parser-count(5dsconf)
dsml-relative-root-url(5dsconf)
dsml-request-max-size(5dsconf)
dsReplFractionalExclude(5dsconf)
dsReplFractionalInclude(5dsconf)
file-descriptor-count(5dsconf)
heap-high-threshold-size(5dsconf)
heap-low-threshold-size(5dsconf)
index-filter-analyzer-enabled(5dsconf)
index-filter-analyzer-max-entries(5dsconf)
max-thread-per-connection-count(5dsconf)
min-free-disk-space-size(5dsconf)
nsAbandonedSearchCheckInterval(5dsconf)
nsActiveChainingComponents(5dsconf)
nsBindConnectionsLimit(5dsconf)
nsConcurrentBindLimit(5dsconf)
nsConcurrentOperationsLimit(5dsconf)
nsds5BeginReplicaRefresh(5dsconf)
nsDS5ReplicaAutoReferral(5dsconf)
nsDS5ReplicaBindMethod(5dsconf)
nsDS5ReplicaChangeCount(5dsconf)
nsds5replicaChangesSentSinceStartup(5dsconf)
nsDS5ReplicaCredentials(5dsconf)
nsds5replicaLastInitEnd(5dsconf)
nsds5replicaLastInitStart(5dsconf)
nsds5replicaLastInitStatus(5dsconf)
nsds5replicaLastUpdateEnd(5dsconf)
nsds5replicaLastUpdateStart(5dsconf)
nsds5replicaLastUpdateStatus(5dsconf)
nsDS5ReplicaPurgeDelay(5dsconf)
nsDS5ReplicatedAttributeList(5dsconf)
nsDS5ReplicationAgreement(5dsconf)
nsDS5ReplicaTombstonePurgeInterval(5dsconf)
nsDS5ReplicaTransportInfo(5dsconf)
nsds5replicaUpdateInProgress(5dsconf)
nsDS5ReplicaUpdateSchedule(5dsconf)
nsMaxTestResponseDelay(5dsconf)
nsMultiplexorCredentials(5dsconf)
nsOperationConnectionsLimit(5dsconf)
nsProxiedAuthorization(5dsconf)
nsReferralOnScopedSearch(5dsconf)
nsslapd-accesscontrol(5dsconf)
nsslapd-accesslog-level(5dsconf)
nsslapd-accesslog-list(5dsconf)
nsslapd-accesslog-logbuffering(5dsconf)
nsslapd-accesslog-logexpirationtime(5dsconf)
nsslapd-accesslog-logexpirationtimeunit(5dsconf)
nsslapd-accesslog-logging-enabled(5dsconf)
nsslapd-accesslog-logmaxdiskspace(5dsconf)
nsslapd-accesslog-logminfreediskspace(5dsconf)
nsslapd-accesslog-logrotationtime(5dsconf)
nsslapd-accesslog-logrotationtimeunit(5dsconf)
nsslapd-accesslog-maxlogsize(5dsconf)
nsslapd-accesslog-maxlogsperdir(5dsconf)
nsslapd-accesslog-permissions(5dsconf)
nsslapd-allidsthreshold(5dsconf)
nsslapd-attribute-name-exceptions(5dsconf)
nsslapd-auditlog-level(5dsconf)
nsslapd-auditlog-list(5dsconf)
nsslapd-auditlog-logbuffering(5dsconf)
nsslapd-auditlog-logexpirationtime(5dsconf)
nsslapd-auditlog-logexpirationtimeunit(5dsconf)
nsslapd-auditlog-logging-enabled(5dsconf)
nsslapd-auditlog-logmaxdiskspace(5dsconf)
nsslapd-auditlog-logminfreediskspace(5dsconf)
nsslapd-auditlog-logrotationtime(5dsconf)
nsslapd-auditlog-logrotationtimeunit(5dsconf)
nsslapd-auditlog-maxlogsize(5dsconf)
nsslapd-auditlog-maxlogsperdir(5dsconf)
nsslapd-auditlog-permissions(5dsconf)
nsslapd-certmap-basedn(5dsconf)
nsslapd-changelogmaxage(5dsconf)
nsslapd-changelogmaxentries(5dsconf)
nsslapd-db-checkpoint-interval(5dsconf)
nsslapd-db-circular-logging(5dsconf)
nsslapd-db-durable-transactions(5dsconf)
nsslapd-db-home-directory(5dsconf)
nsslapd-db-idl-divisor(5dsconf)
nsslapd-db-logbuf-size(5dsconf)
nsslapd-db-logdirectory(5dsconf)
nsslapd-db-logfile-size(5dsconf)
nsslapd-db-transaction-batch-val(5dsconf)
nsslapd-disk-full-threshold(5dsconf)
nsslapd-disk-low-threshold(5dsconf)
nsslapd-distribution-funct(5dsconf)
nsslapd-distribution-plugin(5dsconf)
nsslapd-dn-cachememsize(5dsconf)
nsslapd-ds4-compatible-schema(5dsconf)
nsslapd-enquote-sup-oc(5dsconf)
nsslapd-errorlog-level(5dsconf)
nsslapd-errorlog-list(5dsconf)
nsslapd-errorlog-logbuffering(5dsconf)
nsslapd-errorlog-logexpirationtime(5dsconf)
nsslapd-errorlog-logexpirationtimeunit(5dsconf)
nsslapd-errorlog-logging-enabled(5dsconf)
nsslapd-errorlog-logmaxdiskspace(5dsconf)
nsslapd-errorlog-logminfreediskspace(5dsconf)
nsslapd-errorlog-logrotationtime(5dsconf)
nsslapd-errorlog-logrotationtimeunit(5dsconf)
nsslapd-errorlog-maxlogsize(5dsconf)
nsslapd-errorlog-maxlogsperdir(5dsconf)
nsslapd-errorlog-permissions(5dsconf)
nsslapd-exclude-from-export(5dsconf)
nsslapd-groupevalnestlevel(5dsconf)
nsslapd-groupevalsizelimit(5dsconf)
nsslapd-import-cachesize(5dsconf)
nsslapd-infolog-level(5dsconf)
nsslapd-ioblocktimeout(5dsconf)
nsslapd-listenBacklog(5dsconf)
nsslapd-maxconnections(5dsconf)
nsslapd-maxdescriptors(5dsconf)
nsslapd-maxthreadsperconn(5dsconf)
nsslapd-plugin-depends-on-named(5dsconf)
nsslapd-plugin-depends-on-type(5dsconf)
nsslapd-pluginDescription(5dsconf)
nsslapd-pluginEnabled(5dsconf)
nsslapd-pluginInitfunc(5dsconf)
nsslapd-pluginVersion(5dsconf)
nsslapd-privatenamespaces(5dsconf)
nsslapd-pwdgeneratorpwdlen(5dsconf)
nsslapd-require-index(5dsconf)
nsslapd-reservedescriptors(5dsconf)
nsslapd-return-exact-case(5dsconf)
nsslapd-rootpwstoragescheme(5dsconf)
nsslapd-schema-repl-useronly(5dsconf)
nsslapd-securelistenhost(5dsconf)
nsslapd-versionstring(5dsconf)
nsTransmittedControls(5dsconf)
pwd-accept-hashed-pwd-enabled(5dsconf)
pwd-expire-no-warning-enabled(5dsconf)
pwd-expire-warning-delay(5dsconf)
pwd-failure-count-interval(5dsconf)
pwd-grace-login-limit(5dsconf)
pwd-keep-last-auth-time-enabled(5dsconf)
pwd-lockout-repl-priority-enabled(5dsconf)
pwd-max-failure-count(5dsconf)
pwd-max-history-count(5dsconf)
pwd-must-change-enabled(5dsconf)
pwd-root-dn-bypass-enabled(5dsconf)
pwd-safe-modify-enabled(5dsconf)
pwd-strong-check-dictionary-path(5dsconf)
pwd-strong-check-enabled(5dsconf)
pwd-strong-check-require-charset(5dsconf)
pwd-supported-storage-scheme(5dsconf)
pwd-user-change-enabled(5dsconf)
ref-integrity-check-delay(5dsconf)
ref-integrity-enabled(5dsconf)
repl-accept-client-update-enabled(5dsconf)
repl-cl-max-entry-count(5dsconf)
repl-fractional-exclude-attr(5dsconf)
repl-fractional-include-attr(5dsconf)
replPriorityAttribute(5dsconf)
repl-rewrite-referrals-enabled(5dsconf)
repl-user-schema-enabled(5dsconf)
require-bind-pwd-enabled(5dsconf)
require-index-enabled(5dsconf)
retro-cl-deleted-entry-attr(5dsconf)
retro-cl-ignored-attr(5dsconf)
retro-cl-max-entry-count(5dsconf)
root-pwd-storage-scheme(5dsconf)
rotation-min-file-size(5dsconf)
secure-listen-address(5dsconf)
ssl-rsa-security-device(5dsconf)
ssl-supported-ciphers(5dsconf)
transport-compression(5dsconf)
transport-window-size(5dsconf)
useAuthzIdForAuditAttrs(5dsconf)
- DS suffix configuration (SUF) properties
Each Directory Server suffix you create is configured according to the suffix properties documented here and in the documentation specified under the SEE ALSO section.
|
This property specifies entry eligibility for compression.
All the entries will be compressed.
Only entries in overflow pages will be compressed.
|
This property specifies how entries are compressed.
No entries compression mechanism will be used.
Entries will be compressed using the DSZ method.
|
This property specifies the suffix that is used to process requests involving the database.
|
This property specifies the absolute path to the suffix database.
|
This property specifies the number of entries allowed in the entry cache of the suffix.
|
This property specifies the maximum amount of memory Directory Server requests for the entry cache of the suffix.
|
This property specifies the number of entries stored in the suffix.
|
This property specifies whether a CRC is computed on each entry.
|
This property specifies whether the index filter analyzer is running.
|
This property specifies the maximum number of entries that the index filter analyzer may contain.
|
This property specifies the DN of the parent entry for the suffix. The value of this property must logically be a parent of the suffix.
For instance, if you have a suffix with DN dc=com and a suffix dc=example,dc=com, you can set dc=com as the parent-suffix-dn of dc=example,dc=com, and subtree searches with based DN dc=com then also travers dc=example,dc=com.
|
This property specifies how referrals are used when a client makes a request involving the suffix.
Handle requests locally; do not return referral URLs.
Return referral URLs to client requests.
Return referral URLs to client requests only for write operations.
|
This property specifies whether the replicated suffix accepts write operations from client applications, or instead returns referral URLs.
|
This property specifies the maximum age for a record in the replication changelog. Older records are purged.
|
This property specifies the maximum number of records in the replication changelog. When the limit is exceeded, older records are purged.
|
This property specifies the replica identification number, 1-65534 for a supplier, 65535 for a consumer or a hub. Once set, this property cannot be modified.
|
This property specifies the bind DNs of users allowed to bind to perform replication operations on the suffix.
|
This property specifies the maximum age of tombstone entries used by replication. Tombstone entries are entries marked for deletion that have not yet been removed, and also replication state information associated with the entries. When setting this attribute, ensure that the purge delay is longer than the longest replication cycle in your replication policy to avoid incurring conflict resolution problems and divergence between replicas.
|
This property specifies whether referrals you set can be automatically overwritten by the server to reference replicas.
|
This property specifies the role played by the suffix in a replicated topology.
The suffix is not part of a replicated toplogy.
This suffix is a supplier of replication updates in a replicated topology. It can accept both read and write operations.
This suffix is a supplier of replication updates in a replicated topology. It can accept read operations and replication updates.
This suffix is a dedicated consumer of replication updates in a replicated topology. It can accept read operations and replication updates, but not writes from clients.
To promote a replica, use the dsconf promote-repl command. To demote a replica, use the dsconf demote-repl command.
|
This property determines whether unindexed searches are allowed. When on, unindexed searches return LDAP_UNWILLING_TO_PERFORM.
Syntax values shown in lower case or partly in lower case are literal values.
Those shown in upper case are syntax types, defined as follows:
A valid attribute type name such as cn or objectClass.
true or false.
A valid distinguished name such as ou=People,dc=example,dc=com.
A duration specified in months (M), weeks (w), days (d), hours (h), minutes (m), seconds (s), and miliseconds (ms), or some combination with multiple specifiers. For example, you can specify one week as 1w, 7d, 168h, 10080m, or 604800s. You can also specify one week as 1w0d0h0m0s.
DURATION properties typically do not each support all duration specifiers (Mwdhms). Examine the output of dsconf help-properties for the property to determine which duration specifiers are supported.
A valid e-mail address.
An IP address or host name.
A positive integer value between 0 and the maximum supported integer value in the system address space. On 32-bit systems, 2147483647. On 64-bit systems, 9223372036854775807.
An interval value of the form hhmm-hhmm 0123456, where the first element specifies the starting hour, the next element the finishing hour in 24-hour time format, from 0000-2359, and the second specifies days, starting with Sunday (0) to Saturday (6).
An IP address or range of address in one of the following formats:
IP address in dotted decimal form.
IP address and bits, in the form of network number/mask bits.
IP address and quad, in the form of a pair of dotted decimal quads.
All address. A catch-all for clients that are note placed into other, higher priority groups.
0.0.0.0. This address is for groups to which initial membership is not considered. For example, for groups that clients switch to after their initial bind.
IP address of the local host.
A valid LDAP URL as specified by RFC 2255.
A memory size specified in gigabytes (G), megabytes (M),kilobytes (k), or bytes (b). Unlike DURATION properties, MEMORY_SIZE properties cannot combine multiple specifiers. However, MEMORY_SIZE properties allow decimal values, for example, 1.5M.
A valid cn (common name).
A three-digit, octal file permissions specifier. The first digit specifies permissions for the server user ID, the second for the server group ID, the last for other users. Each digit consists of a bitmask defining read (4), write (2), execute (1), or no access (0) permissions, thus 640 specifies read-write access for the server user, read-only access for other users of the server group, and no access for other users.
The full path to the file from which the bind password should be read.
A valid, absolute file system path.
A DirectoryString value, as specified by RFC 2252.
An SSL cipher supported by the server. See the Reference for a list of supported ciphers.
An SSL protocol supported by the server. See the Reference for a list of supported protocols.
A time of the form hhmm in 24-hour format, where hh stands for hours and mm stands for minutes.
See attributes(5) for descriptions of the following attributes:
|
dsconf(1M), all-ids-threshold(5dsconf), db-path(5dsconf), enabled(5dsconf), moddn-enabled(5dsconf), referral-url(5dsconf)
|