wiki:LegacyEdirDocs

Version 41 (modified by lttoth@…, 10 years ago) (diff)

--

EDIR Documentation for E Boxes

All of Beth's text file documents will be placed in this node. The following are the documentation topics as found in the Documentation directory. As I read each page, I will replace the file name reference to something more meaningful. I also will put it into a more logical format for browsing.

Finally, I am using this as a way to record what has changed from when E boxes performed all processing (AUTHSERV, EDIR Self-Service, and LDAP repository) and the core LDAP repository processing was moved to the IDMP Cluster. In some cases, for example the location and names of necessary password files, has changed substantially between legacy E Box management and iPlanet on IDMP-3. In those cases, the topic remains focused on the E Box implementation.

Document Organization Overivew

Technical documentation for the directory project (EDIR) was organized by intended audience as indicated by the following file prefixes. The current organization is based on function since Identity and Access Management has assumed almost all functions. Beth Mercer's original organization is referenced as a prefix to the links below and in the page names.

  • ALL : everyone supporting the directory project
  • APACHE : individuals administering the Apache web server
  • AUTH : individuals maintaining the AUTHSERV web gateway
  • DS : individuals maintaining the underlying directory servers
  • EDIR : individuals maintaining the EDIR web gateway
  • LDAP : individuals responsible for maintaining the directory servers
  • REGI : individuals responsible for maintaining registry processes
  • SERV : individuals responsible for maintaining the servers hosting the directories and web gateways
  • UPDT : individuals responsible for maintaining the update back end to EDIR/AUTHSERV
    • integrally related to registry

iPlanet and Process_flows Categories

  • iPlanet : directory containing copies of iPlanet technical documentation
  • process_flows: directory containing web versions of Visio documents showing process flows

Functions No Longer Applicable to Current EDIR Self-Service and AUTHSERV

  • ISW : individuals responsible for configuring/maintaining ISW within the directory
  • KERB : individuals responsible for supporting kerberos/directory interactions

Enterprise Directory Architecture

ALL: Overview of Enterprise Directory Architecture
ALL: Enterprise Directory Record Lifecycle (LDAP_REG.STATE)

EDIR Security

ALL: Directory Related Security
ALL: EDIR/AUTHSERV Access Control
ALL: Directory Account Administration
ALL: Maintenance of iPlanet ACIs
ALL: EDIRrole and Associated iPlanet Roles
ALL: eduIsMemberOf and Associated Group Records
ALL: iPlanet Password Policies
APACHE: Sharing iPlanet Certificates
APACHE: SSL Certificate Requirements

Understanding the EDIR EBox Servers

ALL: Accounts, Roles, and Groups Utilized by UPDATE, EDIR, and AUTHSERV

Managing EDIR Infrastructure

ALL: Areas of Responsibiity
ALL: How to Modify the EDIR Schema
ALL: How to Disable EDIR/AUTHSERV Updates

Processes and Process Management

AUTH: AUTHSERV Related Processes
AUTH: AUTHSERV Utility Scripts
EDIR: EDIR Related Batch Processes
EDIR: EDIR/AUTHSERV Utility Scripts?

Gateway Processes

AUTH: AUTHSERV Gateway Scripts
EDIR: EDIR Gateway Scripts
UPDT: UPDATE Gateway Scripts
DS: Patches Applied in 2006

Managing EDIR Data

EDIR: Ad Hoc Changes to EDIR accounts

AppWorx Management

ALL: Appworx Configuration in Support of LDAP/EDIR Related Jobs

Processing LDAP Data

UPDT: Monthly Process: EDIR Unit Changes Following BOR Structure Table Changes

File Listing

LDAP_init_directory
LDAP_known_issues
LDAP_migrate_instance
LDAP_repop_directory
LDAP_servicenamed_cert_renewal
LDAP_starting_stopping
LDAP_temp_lock_removal
LDAP_troubleshooting
REGI_batch_jobs
REGI_bulk_mail_err_res
REGI_bulk_update_process
REGI_migrate_account
REGI_process_extract
REGI_resolving_lock_problems
REGI_troubleshooting
REGI_zuausr_objects
SERV_configure_apache
SERV_configure_server
SERV_server_deployment
SERV_space_consumption
SERV_truncate_changelogdb
UPDT_FATAL_errors
UPDTarchitecture
UPDT_archive_output
UPDT_batch_jobs
SW_utility_scripts UPDT_business_process_rules
KERB_conf_changes
KERB_implementation UPDT_process_purge
LDAP_acct_mgmt UPDT_unit_changes
LDAP_admin_passwords UPDT_unit_deletes
LDAP_batch_jobs UPDT_utility_scripts
LDAP_cert_import UPDT_validate_sync
LDAP_cert_sharing expanded_architecture_20041_09_07.pdf
LDAP_expired_cert iPlanet_docs
LDAP_force_logroll misc
LDAP_hostnamed_cert_renewal process_flows
uakLocalEmail_spec_20051101_final.pdf