LDAP-UX Client Services B.04.00 with Microsoft Windows 2000/2003 Active Directory Administrator's Guide
Installing LDAP-UX Client Services
Planning Your Installation
Chapter 214
Planning Your Installation
Before beginning your installation, plan how to set up and verify your
Active Directory and your LDAP-UX Client Services environment.
Consider the following questions. Record your decisions and
configuration information in Appendix A, “Configuration Worksheet,” on
page 143.
• Will Active Directory be set up with a single domain or multiple
domains?
Starting from the release of B.03.00, LDAP-UX allows you to store
your password and group data in multiple domains. You need to
decide if you want to store data in a single domain or multiple
domains. If multiple domains are selected, decide how to group data
into different domains. Data could be grouped based on organization,
geography, or any variable appropriate to your environment.
• If multiple domains are selected, how will data be stored in the
forest?
LDAP-UX Client Services treats the first domain configured as the
local domain, and all other domains in the forest as remote domains.
When retrieving data, the search always starts from the local
domain. Frequently accessed information should be stored in the
local domain.
For remote domains, information can be stored in every remote
domain or only in some remote domains. Determine the appropriate
structure for your environment.
• If multiple domains are selected, how will data be retrieved?
When multiple domains are selected, LDAP-UX Client Services has
search rules for remote domains. For information about configuring
the search sequence, refer to Chapter 3, “Active Directory Multiple
Domains,” on page 59.
• How many directory databases are needed?
Each client system binds to an Active Directory server containing
your supported name service data (such as user and group data). On
Active Directory networks, each domain controller contains a copy of
the Active Directory database.