Manualshelf

Red Hat Directory Server 8.0 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX Red Hat Directory Server Software
121122123124125126127128129130
client on server two:
aci: (targetattr
="*")(target="l=Zanzibar,c=africa,ou=people,dc=example,dc=com")
(version 3.0; acl "Client authentication for database link users";
allow (all)
userdn = "ldap:///uid=*,c=us,ou=people,dc=example,dc=com";)
The cascading chaining configuration is now set up. This cascading configuration allows a user
to bind to server one and modify information in the
l=Zanzibar,c=africa,ou=people,dc=example,dc=com branch on server three. Depending on
your security needs, it may be necessary to provide more detailed access control.
4. Using Referrals
Referrals tell client applications which server to contact for a specific piece of information. This
redirection occurs when a client application requests a directory entry that does not exist on the
local server or when a database has been taken off-line for maintenance. This section contains
the following information about referrals:
Section 4.1, “Starting the Server in Referral Mode”
Section 4.2.1, “Setting a Default Referral Using the Console”
Section 4.3, “Creating Smart Referrals”
Section 4.4, “Creating Suffix Referrals”
4.1. Starting the Server in Referral Mode
Referrals are used to redirect client applications to another server while the current server is
unavailable or when the client requests information that is not held on the current server. For
example, starting Directory Server in referral mode while there are configuration changes being
made to the Directory Server will refer all clients to another supplier while that server is
unavailable. Starting the Directory Server in referral mode is done with the refer command.
Run nsslapd with the refer option.
/usr/sbin/ns-slapd refer -D /usr/lib/dirsrv/slapd-instance_name [-p port] -r
referral_url
/usr/lib/dirsrv/slapd-instance_name is the directory where the Directory Server
configuration files are. This is the default location on Red Hat Enterprise Linux 5 i386; for the
location on other platforms, see Section 1, “Directory Server File Locations”.
Chapter 3. Configuring Directory Databases
106