User guide

ManualsBrandsRed Hat ManualsComputer equipmentNETSCAPE ENTERPRISE SERVER 6.0 - NSAPI PROGRAMMER GUIDE

101

102

103

104

105

106

107

108

109

110

Chapter 2: Environment Setup (SSO Administrators)

2-28

Using an LDIF File

This section explains how to register user information and role configuration based on the sample LDIF

file provided by Interstage Single Sign-on. Perform the following procedure to register entries using the

LDIF file. Execute the ldapmodify command to register entries using the LDIF file.

Refer to the Smart Repository Operator's Guide for details of the LDIF file. Refer to the Reference

Manual (Command Edition) for details of the ldapmodify command.

The LDIF file also can be used to delete or update information. Refer to the Smart Repository

Operator's Guide for details of how to delete or update information.

1. Create an LDIF file.

2. Execute the ldapmodify command.

1. Creating an LDIF File

Specify in the LDIF file role configuration and user information to be registered in the SSO repository.

Modify role configuration and user information set in the sample LDIF file as necessary.

Refer to Role Configuration Entry and User Information Entry for details of the entry attributes of role

configuration and user information.

Note the following points for creating an LDIF file:

• Do not insert a blank line at the beginning of the LDIF file. If a blank line is inserted, none of the

entries in the LDIF file are registered.

• Insert a blank line between entry information items to separate entry information. If two or more

blank lines continue, subsequent entries are not registered.

If the default value of [Public directory] has been changed during creation of an SSO repository, change

the bold characters of the sample LDIF file to the directory set in [Public directory].

If 'No' is selected in [Create default tree?], add the following specification example to the beginning of

the sample LDIF file.

Example

In this example, the following entries are registered:

Public directory: ou=interstage,o=fujitsu,dc=com

Access control information registration destination entry: ou=SSO ACI,ou=interstage,o=fujitsu,dc=com

Role configuration registration destination entry: ou=Role,ou=SSO ACI,ou=interstage,o=fujitsu,dc=com

Protection resource registration destination entry: ou=Resource,ou=SSO

ACI,ou=interstage,o=fujitsu,dc=com

User information registration destination entry: ou=User,ou=interstage,o=fujitsu,dc=com

When a registration destination entry has been changed, also change the registration destination entry

set in the sample LDIF file.

dn: ou=SSO ACI,ou=interstage,o=fujitsu,dc=com

objectClass: organizationalUnit

objectClass: top

ou: SSO ACI

dn: ou=Role,ou=SSO ACI,ou=interstage,o=fujitsu,dc=com