Manualshelf

Specifications

ManualsBrandsApple ManualsComputer equipmentMac OS X Server Command-Line
191192193194195196197198199200
Chapter 9 Maintaining Open Directory Services 195
Decommissioning an Open Directory Replica
You can take an Open Directory replica server out of service by making it a standalone
server or by connecting it to another system for directory and authentication services.
To decommission an Open Directory replica:
1 Verify that the network connection is working between the Open Directory master
and the replica you want to decommission.
Port 389 or 636 must be open between master and replica while decommissioning
the replica. LDAP uses port 389 if SSL is disabled or port 636 if SSL is enabled on the
master. (Port 22, used for SSH, does not need to be open to decommission a replica.)
Important: If you decommission a replica while there is no network connectivity
between it and the master, the decommissioned replica remains in the masters list of
replicas. The master will try to replicate to the decommissioned replica as specied in
the General settings pane for Open Directory service on the master server.
2 In Server Admin, connect to the replica you want to decommission.
3 Click the triangle at the left of the server.
The list of services appears.
4 From the expanded Servers list, select Open Directory.
5 Click Settings, then click General.
6 Click Change.
The Open Directory Assistant opens.
7 Choose Decommission replica and set up a standalone directory or Decommission
replica and connect to another directory and enter the following information.
 Root password on Open Directory master: Enter the password of the Open Directory
master systems root user (user name system administrator).
 Domain administrator’s short name: Enter the name of an LDAP directory domain
administrator account.
 Domain administrator’s password: Enter the password of the administrator account
whose name you entered.
8 Click Continue.
9 Conrm the Open Directory conguration setting, then click Continue.
10 If you are sure that users and services no longer need access to the directory data
stored in the shared directory domain that the server has been hosting or was
connected to, click Done.
This saves your setting and restarts the service.
Assuming there is a network connection between the Open Directory master and
the replica, the master is updated to no longer connect to the replica.