= EDIR Documentation for E Boxes = All of Beth's text file documents will be placed in this node. The following are the documentation topics as found in the Documentation directory. As I read each page, I will replace the file name reference to something more meaningful. I also will put it into a more logical format for browsing. Finally, I am using this as a way to record what has changed from when E boxes performed all processing (AUTHSERV, EDIR Self-Service, and LDAP repository) and the core LDAP repository processing was moved to the IDMP Cluster. In some cases, for example the location and names of necessary password files, has changed substantially between legacy E Box management and iPlanet on IDMP-3. In those cases, the topic remains focused on the E Box implementation. == Document Organization Overivew == Technical documentation for the directory project (EDIR) was organized by intended audience as indicated by the following file prefixes. The current organization is based on function since Identity and Access Management has assumed almost all functions. Beth Mercer's original organization is referenced as a prefix to the links below and in the page names. * ALL : everyone supporting the directory project * APACHE : individuals administering the Apache web server * AUTH : individuals maintaining the AUTHSERV web gateway * DS : individuals maintaining the underlying directory servers * EDIR : individuals maintaining the EDIR web gateway * LDAP : individuals responsible for maintaining the directory servers * REGI : individuals responsible for maintaining registry processes * SERV : individuals responsible for maintaining the servers hosting the directories and web gateways * UPDT : individuals responsible for maintaining the update back end to EDIR/AUTHSERV * integrally related to registry ==== iPlanet and Process_flows Categories ==== * iPlanet : directory containing copies of iPlanet technical documentation * process_flows: directory containing web versions of Visio documents showing process flows ==== Functions No Longer Applicable to Current EDIR Self-Service and AUTHSERV ==== * ISW : individuals responsible for configuring/maintaining ISW within the directory * KERB : individuals responsible for supporting kerberos/directory interactions == Enterprise Directory Architecture == ALL: [[ALL__architecture| Overview of Enterprise Directory Architecture]][[br]] ALL: [[ALL__record_lifecyle| Enterprise Directory Record Lifecycle (LDAP_REG.STATE)]] == EDIR Security == ALL: [[ALL__security| Directory Related Security]][[br]] ALL: [[ALL__security_access_control| EDIR/AUTHSERV Access Control ]][[br]] ALL: [[ALL__security_account_admin| Directory Account Administration]][[br]] ALL: [[ALL__security_acis| Maintenance of iPlanet ACIs]][[br]] ALL: [[ALL__security_edirrole| EDIRrole and Associated iPlanet Roles]][[br]] ALL: [[ALL__security_ismemberof| eduIsMemberOf and Associated Group Records ]][[br]] ALL: [[ALL__security_passwd_policy| iPlanet Password Policies ]][[br]] APACHE: [[APACHE_sharing_iplanet_cert| Sharing iPlanet Certificates ]][[br]] APACHE: [[APACHE_ssl_cert_req | SSL Certificate Requirements]][[br]] == Understanding the EDIR EBox Servers == ALL: [[ALL__accounts_roles| Accounts, Roles, and Groups Utilized by UPDATE, EDIR, and AUTHSERV ]] == Managing EDIR Infrastructure == ALL: [[ALL__areas_of_responsibility| Areas of Responsibiity]][[br]] ALL: [[ALL__add_attribute| How to Modify the EDIR Schema]][[br]] ALL: [[ALL__disable_updates| How to Disable EDIR/AUTHSERV Updates]][[br]] === Processes and Process Management === AUTH: [[AUTH_batch_jobs| AUTHSERV Related Processes]][[br]] AUTH: [[AUTH_utility_scripts|AUTHSERV Utility Scripts]][[br]] EDIR: [[EDIR_batch_jobs| EDIR Related Batch Processes]][[br]] EDIR: [[AUTH_utility_scripts|EDIR Utility Scripts]][[br]] === Gateway Processes === AUTH: [[AUTH_gw_scripts|AUTHSERV Gateway Scripts]][[br]] EDIR: [[EDIR_gw_scripts| EDIR Gateway Scripts]][[br]] UPDT: [[UPDT_gw_scripts| UPDATE Gateway Scripts]][[br]] DS: [[DS_patching|Patches Applied in 2006]][[br]] == Managing EDIR Data == EDIR: [[EDIR_adhoc_updates|Ad Hoc Changes to EDIR accounts]][[br]] LDAP: [[LDAP_acct_mgmt|EDIR Account Management Processes and Associated Utilities]][[br]] == Document Links == === !AppWorx Management === ALL: [[ALL__appworx_config| Appworx Configuration in Support of LDAP/EDIR Related Jobs]] === Processing LDAP Data === UPDT: [[UPDT_unit_changes| Monthly Process: EDIR Unit Changes Following BOR Structure Table Changes]][[br]] == File Listing == || || LDAP_init_directory || || || LDAP_known_issues || || ||LDAP_migrate_instance || || || LDAP_repop_directory || || || LDAP_servicenamed_cert_renewal || || || LDAP_starting_stopping || || || LDAP_temp_lock_removal || || || LDAP_troubleshooting || || || REGI_batch_jobs || || || REGI_bulk_mail_err_res || || || REGI_bulk_update_process || || || REGI_migrate_account || || || REGI_process_extract || || || REGI_resolving_lock_problems || || || REGI_troubleshooting || || || REGI_zuausr_objects || || || SERV_configure_apache || || || SERV_configure_server || || || SERV_server_deployment || || || SERV_space_consumption || || || SERV_truncate_changelogdb || || || UPDT_FATAL_errors || || || UPDT__architecture || || || UPDT_archive_output || || || UPDT_batch_jobs || || || UPDT_business_process_rules || || || || || || UPDT_process_purge || || || UPDT_unit_changes || || LDAP_admin_passwords || UPDT_unit_deletes || || LDAP_batch_jobs || UPDT_utility_scripts || || LDAP_cert_import || UPDT_validate_sync || || LDAP_cert_sharing || expanded_architecture_20041_09_07.pdf || || LDAP_expired_cert || iPlanet_docs || || LDAP_force_logroll || misc || || LDAP_hostnamed_cert_renewal || process_flows || || uakLocalEmail_spec_20051101_final.pdf || ||