ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzahy_5.4.0.1/rzahyconfigure.htm

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
      "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en-US" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="dc.language" scheme="rfc1766" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights                   -->
<!-- Use, duplication or disclosure restricted by            -->
<!-- GSA ADP Schedule Contract with IBM Corp.                -->
<meta name="dc.date" scheme="iso8601" content="2005-09-06" />
<meta name="copyright" content="(C) Copyright IBM Corporation 1998, 2006" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow"/>
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<title>Directory Server (LDAP) - Configure Directory Server</title>
<link rel="stylesheet" type="text/css" href="ibmidwb.css" />
<link rel="stylesheet" type="text/css" href="ic.css" />
</head>
<body>
<a id="Top_Of_Page" name="Top_Of_Page"></a><!-- Java sync-link --> 
<script language = "Javascript" src = "../rzahg/synch.js" type="text/javascript"></script>


<a name="rzahyconfigure"></a>
<h2 id="rzahyconfigure">Configure Directory Server</h2>
<ol type="1">
<li>If your system has not been configured to publish information to another
LDAP server and no LDAP servers are known to the TCP/IP DNS server, then Directory Server is
automatically installed with a limited default configuration. See <a href="rzahydefconrf.htm#rzahydefconrf">Default configuration for Directory Server</a> for
more information. Directory Server provides a wizard to assist you in configuring
the Directory Server for your specific needs. You can run this wizard as part
of EZ-Setup or run the wizard later from iSeries Navigator. Use this wizard when you
initially configure the directory server. You can also use the wizard to reconfigure
the directory server. 
<a name="wq86"></a>
<div class="notetitle" id="wq86">Note:</div>
<div class="notebody">When you use the wizard to reconfigure
the directory server, you start configuring from scratch. The original configuration
is deleted rather than changed. However, the directory data is not deleted,
but instead remains stored in the library that you selected on installation
(QUSRDIRDB by default). The change log also remains intact, in the QUSRDIRCL
library by default.
<p>If you want to start completely from scratch, clear
those two libraries before starting the wizard.</p>
<p>If you want to change
the directory server configuration, but not clear it completely, right-click <span class="bold">Directory</span> and select <span class="bold">Properties</span>. This does not delete the original configuration.</p></div>You must have *ALLOBJ and *IOSYSCFG special authorities to configure
the server. If you want to configure security auditing, you must also have
*AUDIT special authority.</li>
<li>To start the Directory Server Configuration Wizard, take these steps:
<ol type="a">
<li>In iSeries Navigator, expand <span class="bold">Network</span>.</li>
<li>Expand <span class="bold">Servers</span>.</li>
<li>Click <span class="bold">TCP/IP</span>.</li>
<li>Right-click <span class="bold">IBM Directory Server</span> and select <span class="bold">Configure</span>.
<a name="wq88"></a>
<div class="notetitle" id="wq88">Note:</div>
<div class="notebody">If you have already configured
the directory server, click <span class="bold">Reconfigure</span> rather
than <span class="bold">Configure</span>.</div></li></ol></li>
<li>Follow the instructions in the Configure Directory Server wizard to configure
your Directory Server. 
<a name="wq89"></a>
<div class="notetitle" id="wq89">Note:</div>
<div class="notebody">You might also want to put the library
that stores the directory data in a user auxiliary storage pool (ASP) rather
than the system ASP. However, this library cannot be stored in an Independent
ASP and any attempt to configure, reconfigure, or start the server with a
library that exists in an Independent ASP will fail.</div></li>
<li>When the wizard is finished, your Directory Server has a basic configuration.
If you are running Lotus Domino on your system, then port 389 (the default
port for the LDAP server) might already be in use by the Domino LDAP function.
You must do one of the following:
<ul>
<li>Change the port that Lotus Domino uses. See&quot; <a href="../rzair/rzairbindldap.htm">Host Domino LDAP and Directory Server on the same iSeries </a>&quot; in the
E-mail topic for more information.</li>
<li>Change the port that Directory Server uses. See <a href="rzahycptpi.htm#rzahycptpi">Change the port or IP address</a> for
more information.</li>
<li>Use specific IP addresses. See <a href="rzahycptpi.htm#rzahycptpi">Change the port or IP address</a> for more information.</li></ul></li>
<li>Create entries corresponding to the suffix or suffixes that you have configured.
For more information, see <a href="rzahyasf-pi.htm#rzahyasf-pi">Add and remove Directory Server suffixes</a>.</li></ol>
<p>You might want to do some or all of the following before continuing:</p>
<ul>
<li>Import data to the server, see <a href="rzahyimp-pi.htm#rzahyimp-pi">Import/Export an LDIF file</a>.</li>
<li>Enable Secure Sockets Layer (SSL) security, see <a href="rzahyess-pi.htm#rzahyess-pi">Enable SSL and Transport Layer Security on the Directory Server</a>.</li>
<li>Enable Kerberos authentication, see <a href="rzahyekbpi.htm#rzahyekbpi">Enable Kerberos authentication on the Directory Server</a>.</li>
<li>Set up a referral, see <a href="rzahysre-pi.htm#rzahysre-pi">Specify a server for directory referrals</a>.</li></ul>
<a id="Bot_Of_Page" name="Bot_Of_Page"></a>
</body>
</html>