Manualshelf

Installation guide

ManualsBrandsRed Hat ManualsComputer equipmentNETSCAPE DIRECTORY SERVER 6.0
11121314151617181920
Section 1.2.2, Port Numbers has more information on port numbers in Directory Server.
1.2.5. Directory Manager
The Directory Server setup creates a special user called the Directory Manager. T he Directory Manager
is a unique, powerful entry that is used to administer all user and configuration tasks. T he Directory
Manager is a special entry that does not have to conform to a Directory Server configured suffix;
additionally, access controls. password policy, and database limits for size, time, and look-through limits
do not apply to the Directory Manager. There is no directory entry for the Directory Manager user; it is
used only for authentication. You cannot create an actual Directory Server entry that uses the same DN
as the Directory Manager DN.
The Directory Server setup process prompts for a distinguished name (DN) and a password for the
Directory Manager. The default value for the Directory Manager DN is cn=Directory Manager. The
Directory Manager password must contain at least 8 characters which must be ASCII letters, digits, or
symbols.
1.2.6. Directory Administrator
The Directory Server setup also creates an administrator user specifically for Directory Server and
Admin Server server management, called the Directory Administrator. T he Directory Administrator is the
"super user" that manages all Directory Server and Admin Server instances through the Directory
Server Console. Every Directory Server is configured to grant this user administrative access.
There are important differences between the Directory Administrator and the Directory Manager:
The administrator cannot create top level entries for a new suffix through an add operation. either
adding an entry in the Directory Server Console or using ldapadd, a tool provided with OpenLDAP.
Only the Directory Manager can add top-level entries by default. To allow other users to add top-level
entries, create entries with the appropriate access control statements in an LDIF file, and perform an
import or database initialization procedure using that LDIF file.
Password policies do apply to the administrator, but you can set a user-specific password policy for
the administrator.
Size, time, and look-through limits apply to the administrator, but you can set different resource limits
for this user.
The Directory Server setup process prompts for a username and a password for the Directory
Administrator. T he default Directory Administrator username is admin. For security, the Directory
Administrator's password must not be the same as the Directory Manager's password.
1.2.7. Admin Server User
By default, the Admin Server runs as the same non-root user as the Directory Server. Custom and
silent setups provide the option to run the Admin Server as a different user than the Directory Server.
IMPORTANT
The default Admin Server user is the same as the Directory Server user, which is nobody. If the
Admin Server is given a different UID, then that user must belong to the group to which the
Directory Server user is assigned.
1.2.8. Directory Suffix
Red Hat Directory Server 8.2 Installation Guide
12