Sun Java System Directory Server | Sun Java System Access Manager
This article contains Frequently Asked Questions about Sun Java System Directory Server. Before and after you read or search this article, see Neil's blog, it is much more comprehensive than this article. Also, read the relevant portions of the official documentation, though this article is an easier way to find things, the article still refers to the official documentation for attribution and reference purposes.
Please list questions in italic font and answers in bold font.
Documentation
Where is the Official Documentation?
Where is the C SDK?
nsslapd-groupevalsizelimit is not documented on docs.sun.com. What is it?
Introduced starting from 5.2 Patch 3, define the maximum number of members that a static group ( including members of its sub-groups ) used for acl evaluation can have. A value of -1 means infinite. Default value is 5000.
Operational Items
Backups & Frozen Mode
What is frozen mode?
Frozen mode (see Backing Up), as distinct from read only mode, is a mode that the administrator can put Directory Server into. In frozen mode,
all operations are concluded, the configured databases (backends) are taken offline, and no operations accepted from clients
except searches of the configuration. Administrators use this mode to good effect to backup Directory Server databases. With ZFS,
the administrator can snapshot the database in a matter of seconds, then put the server back into operational mode.
Caches
Security
Is it possible to export the database and have the base64 encoded values be un-encoded?
No. See RFC2849
SHA
SSL
Where is some information on using SSL with Directory Server?
One of the better articles on SSL and the directory server, and using the certutil command line to manage the actual certificate DB entries directly on directorymanager.org
ACIs
Database
Database Checkpoint
Can I use Veritas File System for Directory Server database filesystems?
Yes, but not recommended as of 01-OCT-2007. Directory Server performance can suffer during checkpoints because of the way VxFS handles fsync().
Indexes
See the article BDB Indexes and the Sun Java System Directory Server.
Entry Management
Directory Information Tree
Referential Integrity
See the article Referential Integrity.
Schema
Where is inetOrgPerson defined?
In RFC2798.
Grouping Mechanisms
Static Groups
How to search for groups of which an entry is a member?
*see isMemberOf
Dynamic Groups
Roles
Class of Service
Replication
Directory Server and Solaris 10
What about Directory Server 6 and Zones?
*Read information at Learning Solaris *
Logging
Directory Server FAQ - Logging
Performance
How to increase static group operation performance in Directory Server 5.2?
See The Search Tune Parameter in Directory Server 5.2.
How do I cap the number of persistent searches in DSEE6?
Use the following command:
dsconf set-server-prop max-psearch-count:number
Monitoring
How can I tell the number of persistent searches in a DSEE6 instance?
Under cn=monitor, there is an attribute called currentpsearches
Contributors
Your contributions help us make the Directory Server FAQ a powerful tool for our Directory Services Infrastructure needs.
| User | Edits | Comments | Labels |
|---|---|---|---|
| ff1959 | 39 | 1 | 38 |
| ToddGraysonSun | 1 | 0 | 0 |
Comments (1)
Nov 26, 2007
ff1959 says:
Would the FAQ be more useful if split up into individual pages? For example, a p...Would the FAQ be more useful if split up into individual pages? For example, a page could be called "Directory Server FAQ - Performance."