54 lines
3.2 KiB
HTML
54 lines
3.2 KiB
HTML
|
<?xml version="1.0" encoding="utf-8"?>
|
||
|
|
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
|
||
|
|
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
|
||
|
|
<html xmlns="http://www.w3.org/1999/xhtml" lang="en-US" xml:lang="en-us">
|
||
|
|
<head>
|
||
|
|
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
|
||
|
|
<meta name="dc.language" scheme="rfc1766" content="en-us" />
|
||
|
|
<!-- All rights reserved. Licensed Materials Property of IBM -->
|
||
|
|
<!-- US Government Users Restricted Rights -->
|
||
|
|
<!-- Use, duplication or disclosure restricted by -->
|
||
|
|
<!-- GSA ADP Schedule Contract with IBM Corp. -->
|
||
|
|
<meta name="dc.date" scheme="iso8601" content="2005-09-06" />
|
||
|
|
<meta name="copyright" content="(C) Copyright IBM Corporation 1998, 2006" />
|
||
|
|
<meta name="security" content="public" />
|
||
|
|
<meta name="Robots" content="index,follow"/>
|
||
|
|
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
|
||
|
|
<title>Directory Server (LDAP) - Work with the administrative group</title>
|
||
|
|
<link rel="stylesheet" type="text/css" href="ibmidwb.css" />
|
||
|
|
<link rel="stylesheet" type="text/css" href="ic.css" />
|
||
|
|
</head>
|
||
|
|
<body>
|
||
|
|
<a id="Top_Of_Page" name="Top_Of_Page"></a><!-- Java sync-link -->
|
||
|
|
<script language = "Javascript" src = "../rzahg/synch.js" type="text/javascript"></script>
|
||
|
|
|
||
|
|
<img src="delta.gif" alt="Start of change" />
|
||
|
|
<a name="rzahyadmingroup"></a>
|
||
|
|
<h2 id="rzahyadmingroup">Work with the administrative group</h2>
|
||
|
|
<p>The administrative group provides the ability to provide administrative
|
||
|
|
capabilities without having to share a single ID and password among the administrators.
|
||
|
|
Members of the administrative group have their own unique IDs and passwords.
|
||
|
|
The administrative group member DNs must not match each other, and they must
|
||
|
|
also not match the IBM Directory Server administrator's DN. Conversely, the
|
||
|
|
IBM Directory Server administrator DN must not match the DN of any administrative
|
||
|
|
group member.</p>
|
||
|
|
<p>This rule also applies to the Kerberos or Digest-MD5 IDs of the IBM Directory
|
||
|
|
Server administrator and the administrative group members. These DNs must
|
||
|
|
not match any of the IBM Directory Server's replication supplier DNs. This
|
||
|
|
also means that IBM Directory Server's replication supplier DNs must not match
|
||
|
|
any of the administrative group member DNs or the IBM Directory Server administrator
|
||
|
|
DN.</p>
|
||
|
|
<a name="wq175"></a>
|
||
|
|
<div class="notetitle" id="wq175">Note:</div>
|
||
|
|
<div class="notebody">The IBM Directory Server's replication supplier DNs can
|
||
|
|
match each other.</div>
|
||
|
|
<p>For more information, see:</p>
|
||
|
|
<ul>
|
||
|
|
<li><a href="rzahyenableadmingroup.htm#rzahyenableadmingroup">Enable the administrative group</a></li>
|
||
|
|
<li><a href="rzahyeditadmingroup.htm#rzahyeditadmingroup">Add, edit, and remove administrative group members</a></li></ul>
|
||
|
|
<p><span class="bold">Related information</span></p>
|
||
|
|
<p><a href="rzahyadminaccess.htm#rzahyadminaccess">Administrative access</a></p><img src="deltaend.gif" alt="End of change" />
|
||
|
|
<a id="Bot_Of_Page" name="Bot_Of_Page"></a>
|
||
|
|
</body>
|
||
|
|
</html>
|