Manualshelf

LDAP-UX Client Services B.04.10 Administrator's Guide (edition 7)

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software
31323334353637383940
The following attributes are recommended for indexing:
cn
objectclass
memberuid
uidnumber
gidnumber
uid
ipserviceport
iphostnumber
To index these entries with Netscape/Red Hat Directory Server, use the Console,
Configuration tab, Indexes tab, Add Attributes button.
10. Determine if you need to support enumeration requests. If you do, increase the Look-Through
limit, the Size limit, and the All-IDs-Threshold in the Directory Server.
Enumeration requests are directory queries that request all of a database, for example all
users or all groups. Enumeration requests of large databases could reduce network and
server performance. With large Netscape/Red Hat Directories and default configurations,
enumerations may fail or provide incomplete data, but the default configuration also may
prevent performance problems from enumerations.
If you need to support enumerations with large Netscape/Red Hat Directories, increase the
listed parameters as described in Preparing Your LDAP Directory for LDAP-UX Integration
available at http://docs.hp.com/hpux/internet/#LDAP-UX%20Integration.
The Look-through limit specifies the maximum number of directory entries to examine
before aborting the search operation. The Size limit determines the maximum number of
entries to return to any query before aborting. The All-IDs-Threshold specifies the number
of entries that can be maintained for an index key. In general, it is bad practice to have an
extremely large All-ID's threashold, as it can dramatically increase the size of your directory
server's database. However, if you have a large number of posixAccounts, posixGroups or
other form of RFC 2307 data that needs to be enumerated and you also have other large sets
of data in your directory server, increasing the All-UID's threashold to above the maximum
number of posixAccounts, posixGroups, or others, can dramatically increase enumeration
performance.
For information on these parameters and how to change them, see the Red Hat Directory
Server Administrator's Guide. See also Minimizing Enumeration Requests (page 120).
11. If you want to enable SSL support with LDAP-UX, you need to turn on SSL in your directory
server. For detailed information on how to set up and configure your Directory Server to
enable SSL communication over LDAP, see “Managing SSL” Chapter in the Red Hat Directory
Server Administrator's Guide at http://docs.hp.com/en/internet.html
Configure Your Directory 31