Creating Suffix Referrals Using The Console; Creating Suffix Referrals From The Command Line - Red Hat DIRECTORY SERVER 8.0 - ADMINISTRATION Administration Manual
Hide thumbs
Also See for DIRECTORY SERVER 8.0 - ADMINISTRATION:
- Installation manual (128 pages) ,
- Command reference manual (278 pages)
Table of Contents
Advertisement
Chapter 3. Configuring Directory Databases
3.4.4.1. Creating Suffix Referrals Using the Console
To create a suffix referral using the Console, do the following:
1. Select the Configuration tab.
2. Under Data in the left pane, click the suffix to which to add a referral.
3. In the Suffix Settings tab, select one of the following radio buttons:
• Return Referrals for all Operations. This means that a referral will be returned when this suffix
receives any request from a client application.
• Return Referrals for Update Operations. This means a referral will be returned when this
suffix receives an update request from a client application. This option is used to redirect update
and write requests made by client applications to a read-only database.
4. Click the Referrals tab. Enter an LDAP URL in the Enter a new referral field, or click Construct
to be guided through the creation of an LDAP URL.
For more information about the structure of LDAP URLs, see
5. Click Add to add the referral to the list.
You can enter multiple referrals. The directory will return the entire list of referrals in response to
requests from client applications.
6. Click Save.
3.4.4.2. Creating Suffix Referrals from the Command Line
Add a suffix referral to the root or sub suffix entry in the directory configuration file under the
cn=mapping tree,cn=config branch.
1. Run ldapmodify.
ldapmodify -a -h example.com -p 389 -D "cn=directory manager" -w secret
The ldapmodify utility binds to the server and prepares it to add information to the configuration
file.
2. Add a suffix referral to the ou=people,dc=example,dc=com root suffix, as follows:
dn: cn=ou=people,dc=example,dc=com,cn=mapping tree,cn=config
objectclass: extensibleObject
objectclasss: nsmappingtree
nsslapd-state: referral
nsslapd-referral: ldap://zanzibar.com/
The nsslapd-state attribute is set to referral, meaning that a referral is returned for
requests made to this suffix. The nsslapd-referral attribute contains the LDAP URL of the
referral returned by the suffix, in this case a referral to the zanzibar.com server.
The nsslapd-state attribute can also be set to referral on update. This means that the
database is used for all operations except update requests. When a client application makes an
update request to a suffix set to referral on update, the client receives a referral.
92
1
For example:
Appendix C, LDAP
URLs.
Advertisement
Table of Contents
Troubleshooting
