[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]


Overview of Sun ONE Directory Server Integration

You can integrate the Sun ONE Directory Server product into your SRC environment by installing an SRC add-on package and then installing Sun ONE Directory Server as specified in this chapter. Sun ONE Directory Server is based on industry-standard LDAP and provides advanced security features, carrier-grade scalability, performance, and availability. Sun ONE acts as a central repository for the consolidation of subscriber profiles.

You can use the information stored in Sun ONE Directory Server for the authentication and authorization of subscribers to enable secure access to enterprise and Internet services. Sun ONE helps to ensure that appropriate access control policies are enforced across all communities, applications, and services on a global basis.

About the Sun ONE Add-On Package

The Sun ONE Directory Server add-on package for the SRC software is called UMCiDSa. This package provides integration files for Sun ONE Directory Server versions 5.1 and 5.2:

Silent Installation for Sun ONE Directory Server

Sun ONE's silent installation feature allows Sun ONE software to be embedded with the SRC software through an sdx.inf file specific to the version of Sun ONE DIrectory Server that is being installed. No user intervention is required during the setup process. Table 8 describes important setup script information provided in an sdx.inf file.




Table 8: Information Provided for the Sun ONE Setup Script
Configuration Property
Value

Installation path

/opt/UMC/iDS

Directory configuration administrator (Sun ONE entity)

admin

Password for directory configuration administrator

admin

LDAP port to be used for directory instance

389

Server identifier (Sun ONE specific). The directory instance is installed in the path:

/opt/UMC/iDS/slapd-sdx

sdx

Suffix for new LDAP directory instance

o=umc

Identifier for superadministrator

cn=umcAdmin, o=umc

Password for superadministrator

admin123

Administrator's port

6666


NOTE: The uid-uniqueness plug-in is not enabled within the initial configuration of the Sun ONE Directory Server software. Because the SRC software does not require a globally unique user ID, this feature should remain disabled.

Load Script to Integrate Sun ONE Directory Server

The load script performs the following tasks:

Because the Merit AAA Server (RADIUS) requires that passwords be stored as clear text, the load script changes a setting to not store the password in an encrypted manner.

Sun One Directory Server stores the access control information in the aci attribute, which is available for all directory entries. The load script processes the access.ldif file to add required access control information.

The load script is designed to work with Sun ONE Directory Server 5.1 and 5.2. For version 5.1, you enter the command with the 5.1 option:

load 5.1

For version 5.2, you enter the command without any options:

load


[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]