132 lines
7.8 KiB
HTML
132 lines
7.8 KiB
HTML
|
<?xml version="1.0" encoding="utf-8"?>
|
||
|
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
|
||
|
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
|
||
|
<html xmlns="http://www.w3.org/1999/xhtml" lang="en-US" xml:lang="en-us">
|
||
|
<head>
|
||
|
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
|
||
|
<meta name="dc.language" scheme="rfc1766" content="en-us" />
|
||
|
<!-- All rights reserved. Licensed Materials Property of IBM -->
|
||
|
<!-- US Government Users Restricted Rights -->
|
||
|
<!-- Use, duplication or disclosure restricted by -->
|
||
|
<!-- GSA ADP Schedule Contract with IBM Corp. -->
|
||
|
<meta name="dc.date" scheme="iso8601" content="2005-09-06" />
|
||
|
<meta name="copyright" content="(C) Copyright IBM Corporation 1998, 2006" />
|
||
|
<meta name="security" content="public" />
|
||
|
<meta name="Robots" content="index,follow"/>
|
||
|
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
|
||
|
<title>Directory Server (LDAP) - Publish information to the Directory Server</title>
|
||
|
<link rel="stylesheet" type="text/css" href="ibmidwb.css" />
|
||
|
<link rel="stylesheet" type="text/css" href="ic.css" />
|
||
|
</head>
|
||
|
<body>
|
||
|
<a id="Top_Of_Page" name="Top_Of_Page"></a><!-- Java sync-link -->
|
||
|
<script language = "Javascript" src = "../rzahg/synch.js" type="text/javascript"></script>
|
||
|
|
||
|
<img src="delta.gif" alt="Start of change" />
|
||
|
<a name="rzahyusr-pi"></a>
|
||
|
<h3 id="rzahyusr-pi">Publish information to the Directory Server</h3>
|
||
|
<p>You can configure your system to publish certain information into a Directory
|
||
|
Server on the same system or on a different system as well as user defined
|
||
|
information. The operating system automatically publishes this information
|
||
|
to the Directory Server when you use iSeries Navigator to change this information on
|
||
|
i5/OS. Information that you can publish includes system (systems and printers),
|
||
|
print shares, user information, and TCP/IP Quality of service policies (for
|
||
|
more information see <a href="rzahypubc.htm#rzahypubc">Publishing</a>).</p>
|
||
|
<p>If the parent DN to which the data is being published does not exist, Directory Server automatically
|
||
|
creates it. You might have also installed other i5/OS applications which publish
|
||
|
information in an LDAP directory. Additionally, you can call application program
|
||
|
interfaces (APIs) from your own programs to publish other types of information
|
||
|
to the LDAP directory.</p>
|
||
|
<a name="wq90"></a>
|
||
|
<div class="notetitle" id="wq90">Note:</div>
|
||
|
<div class="notebody">You can also publish i5/OS information
|
||
|
to a directory server that is not running on i5/OS if you configure that server
|
||
|
to use the IBM schema.</div>
|
||
|
<p>To configure your system to publish i5/OS information into a directory
|
||
|
server, take these steps:</p>
|
||
|
<ol type="1">
|
||
|
<li>In iSeries Navigator, right-click on your system and select <span class="bold">Properties</span>.</li>
|
||
|
<li>Click the <span class="bold">Directory Server</span> tab.</li>
|
||
|
<li>Select the types of information that you want to publish.
|
||
|
<dl>
|
||
|
<dt class="bold">Tip: </dt>
|
||
|
<dd>If you plan to publish more than one type of information to
|
||
|
the same location, you can save time by selecting multiple information types
|
||
|
to configure at one time. Operations Navigator will then use the values you
|
||
|
enter when you configure the one information type as default values when you
|
||
|
configure subsequent information types.
|
||
|
</dd>
|
||
|
</dl></li>
|
||
|
<li>Click <span class="bold">Details</span>.</li>
|
||
|
<li>Click the <span class="bold">Publish system
|
||
|
information</span> check box.</li>
|
||
|
<li>Specify the <span class="bold">Authentication method</span> that you want the server to use, as well as the appropriate authentication
|
||
|
information.</li>
|
||
|
<li>Click the <span class="bold">Edit</span> button next to
|
||
|
the <span class="bold">(Active) Directory server</span> field.
|
||
|
In the dialog that pops up, enter the name of the directory server where you
|
||
|
want to publish i5/OS information, then click <span class="bold">OK</span>.</li>
|
||
|
<li>In the <span class="bold">Under DN</span> field,
|
||
|
enter the parent distinguished name (DN) where you want information added
|
||
|
on the directory server.</li>
|
||
|
<li>Fill in the fields in the <span class="bold">Server connection</span> frame that are appropriate to your configuration.
|
||
|
<a name="wq92"></a>
|
||
|
<div class="notetitle" id="wq92">Note:</div>
|
||
|
<div class="notebody">To
|
||
|
publish i5/OS information to the directory server using SSL or Kerberos, you
|
||
|
need to first have your directory server configured to use the appropriate
|
||
|
protocol. See <a href="rzahykerrf.htm#rzahykerrf">Kerberos authentication with the Directory Server</a> for more information about SSL and
|
||
|
Kerberos.</div></li>
|
||
|
<li>If your directory server does not use the default port, enter
|
||
|
the correct port number in the <span class="bold">Port</span> field.</li>
|
||
|
<li>Click <span class="bold">Verify</span> to ensure that the
|
||
|
parent DN exists on the server and that the connection information is correct.
|
||
|
If the directory path does not exist, a dialog will prompt you to create it.
|
||
|
<a name="wq93"></a>
|
||
|
<div class="notetitle" id="wq93">Note:</div>
|
||
|
<div class="notebody">If the parent DN does not exist, and you do not create it, then
|
||
|
publishing will not be successful.</div></li>
|
||
|
<li>Click <span class="bold">OK</span>.</li></ol>
|
||
|
<p></p>
|
||
|
<a name="wq94"></a>
|
||
|
<div class="notetitle" id="wq94">Note:</div>
|
||
|
<div class="notebody">You can also publish i5/OS information to a directory server
|
||
|
that is on a different platform. You must publish user and system information
|
||
|
to a directory server that uses a schema compatible with the IBM Directory Server schema.
|
||
|
For more information about the IBM Directory Schema, see <a href="rzahyibmschema.htm#rzahyibmschema">IBM Directory Server schema</a>.</div>
|
||
|
<p><span class="bold">APIs for publishing i5/OS information to the directory
|
||
|
server</span></p>
|
||
|
<p>Directory Server provides built-in support for publishing user and system information.
|
||
|
These items are listed on the <span class="bold">Directory Server</span> page
|
||
|
of the systems <span class="bold">Properties</span> dialog. You can use
|
||
|
LDAP server configuration and publishing APIs to enable the i5/OS programs
|
||
|
that you write to publish other types of information. These types of information
|
||
|
then appear on the <span class="bold">Directory Server</span> page as
|
||
|
well. Like users and systems, they are initially disabled, and you configure
|
||
|
them using the same procedure. The program that adds the data to the LDAP
|
||
|
directory is called the publishing agent. The type of information that is
|
||
|
published, as it appears on the <span class="bold">Directory Server</span> page, is called the agent name.</p>
|
||
|
<p>The following APIs will allow you to incorporate publishing into your own
|
||
|
programs:</p>
|
||
|
<dl>
|
||
|
<dt class="bold">QgldChgDirSvrA</dt>
|
||
|
<dd>An application uses the CSVR0500 format to initially add an agent name
|
||
|
that is marked as a disabled entry. Instructions for users of the application
|
||
|
should instruct them to use iSeries Navigator to go to the Directory Server property
|
||
|
page to configure the publishing agent. Examples of agent names are the systems
|
||
|
and users agent names automatically available on the <span class="bold">Directory Server</span> page.
|
||
|
</dd>
|
||
|
<dt class="bold">QgldLstDirSvrA</dt>
|
||
|
<dd>Use this APIs LSVR0500 format to list what agents are currently
|
||
|
available on your system.
|
||
|
</dd>
|
||
|
<dt class="bold">QgldPubDirObj</dt>
|
||
|
<dd>Use this API to do the actual publishing of information.
|
||
|
</dd>
|
||
|
</dl>
|
||
|
<p>For detailed information about these APIs, see the <a href="../apis/dirserv1.htm">Lightweight Directory Access Protocol (LDAP)</a> topic under Programming in
|
||
|
the iSeries Information Center.</p><img src="deltaend.gif" alt="End of change" />
|
||
|
<a id="Bot_Of_Page" name="Bot_Of_Page"></a>
|
||
|
</body>
|
||
|
</html>
|