389 Directory Server Management Web Console


Naming Candidates


389 Java Console Shortcomings


New Design Concepts

“Floating” Configuration

Dynamic UI/Configuration

Configuration Synchronization

Administration Delegation

Grant “users” rights to manage part, or all, of o=dmc - Add aci’s to the proper branches of o=dmc


Installation of DMC

New Tools

setup-dmc.py

register-ds-dmc.py

ds-config-sync.py


New configuration suffix: “o=dmc” (Directory Management Configuration)

o=dmc tree

Configuration Servers (cn=Configuration Servers, o=dmc)

There is only one config server per machine/host

cn=host1.domain1.com, ou=domain1.com, ou=Configuration Servers, o=dmc
host: host1.domain1.com
port: 3890
securePort: 6360
security: on
SecurityDir: /etc/dirsrv/slapd-configuration/
SSLVersionMin: TLS1.1
SSLVersionMax: TLS1.2
AuthMethod: SIMPLE, SASL
AuthProtocol: LDAP, STARTTLS, etc
AuthURLFarm:  <LDAP URL> <LDAP URL> ...   (used for console logins)
...

cn=administrators, cn=host1.domain1.com, ou=domain1.com, ou=Configuration Servers, o=dmc

uid=admin, cn=administrators, cn=host1.domain1.com, ou=domain1.com, ou=Configuration Servers, o=dmc

cn=config, cn=host1.domain1.com, ou=domain1.com, ou=Configuration Servers, o=dmc
<All the UI configuration and preferences>
...

Directory Servers (cn=Directory Servers, o=dmc)

cn=slapd-instance, cn=host1.domain1.com, ou=domain1.com, ou=Directory Servers, o=dmc
host: host1.domain1.com
port: 389
securePort: 636
security: on
SSLVersionMin: TLS1.1
SSLVersionMax: TLS1.2
AuthMethod:  SIMPLE, GSSAPI(kerberos)
AuthProtocol:  LDAP, STARTTLS (no LDAPS)
ConfigServer: cn=host1.domain1.com,ou=domain1.com,ou=Configuration Servers,o=dmc
SecurityDir: /etc/dirsrv/slapd-inst1/
...

cn=config, cn=slapd-instance, cn=host1.domain1.com, ou=domain1.com, ou=Directory Servers, o=dmc
<Configuration templates, UI preferences, etc>

HTTP Server

Each Admin/HTTP Server will have a config file that it will use to know how to talk to the Configuration DS.

dmc-adm.conf

port: 9830
security: on
SecurityDir: /etc/dirsrv/slapd-inst1/
SSLVersionMin: TLS1.1
SSLVersionMax: TLS1.2
AuthMethods: SIMPLE, kerberos, ....
AuthProtocol:  LDAP, STARTTLS (no LDAPS)
LocalConfgServer: ldaps://host1.domain1.com:6360
FailoverConfigServers: ???  ???  ???
...

LocalConfigServer is what the Admin Server uses to know which “Configuration Server” config to use.


UI Layout

Tasks page

Configuration Servers Page

Directory Servers Page

Replication Page


Lib389 Integration

Use lib389 as the framework for DS operations, and tools like ds-config-sync.py, etc.

Last modified on 11 November 2015