As the administrator of your company's computer systems, you would like to place employee information such as telephone numbers and e-mail addresses for your organization into a central LDAP repository.
In this scenario, MyCo, Inc. wants to configure a Directory Server and create a directory database that contains employee information such as name, e-mail address, and telephone number.
The objectives of this scenario are as follows:
The Directory Server will run on the iSeries server called myiSeries.
The following example illustrates the information that MyCo, Inc. wants to include into its directory database for each employee.
Name: Jose Alvirez Department: DEPTA Telephone number: 999 999 9999 Email address: jalvirez@my_co.com
The directory structure for this scenario might be visualized as something similar to the following:
/
|
+- my_co.com
|
+- employees
|
+- Jose Alvirez
| DEPTA
| 999-555-1234
| jalvirez@my_co.com
|
+- John Smith
| DEPTA
| 999-555-1235
| jsmith@my_co.com
|
+ Managers group
Jose Alvirez
myiSeries.my_co.com
.
.
.
All employees (managers and non-managers) exist in the employees directory tree. Managers also belong to the managers group. Members of the managers group have authority to change employee data.
The iSeries server (myiSeries) also needs to have authority to change employee data. In this scenario, the iSeries server is placed in the employees directory tree and is made a member of the managers group.
If you want to keep the employee entries separate from the iSeries server entry, you can create another directory tree (for example: computers) and add the iSeries server there. The iSeries server will need to have the same authority as the managers.
Prerequisites and assumptions
The Web Administration tool is properly configured and running. See Web administration for more information.
Complete the following tasks: