9.1.7 Local enterprise tuning and optimizations

The company uses the following tactics to optimize its deployment of Directory Server:

Indexing commonly searched data.

Model the usage or analyze the logs of the live environment, and create indexes to support the most common types of search operations. Avoid creating superfluous indexes: they can slow down update operations.

Optimizing the entry and database caches.

Example Corp. sets the entry cache size to 2GB entries and the database cache to 250MB to ensure that all the indexes fit into RAM, optimizing server performance.

9.1.8Local enterprise operations decisions

The company makes the following decisions regarding the day-to-day operation of its directory:

Back up the databases every night.

Use SNMP to monitor the server status.

For more information about SNMP, refer to the HP-UX Directory Server administrator guide.

Auto-rotate the access and error logs.

Monitor the error log to ensure that the server is performing as expected.

Monitor the access log to screen for searches that should be indexed.

For more information about the access, error, and audit logs, refer to the "Monitoring Server and Database Activity" chapter in the HP-UX Directory Server administrator guide.

9.2 Design example: A multinational enterprise and its extranet

This example builds a directory infrastructure for Example Corp. International. The Example Corp. from the previous example has grown into a large, multinational company. This example builds on the directory structure created in the last example for Example Corp., expanding the directory design to meet its new needs.

Example Corp. has grown into an organization dispersed over three main geographic locations: the US, Europe, and Asia. Example Corp. now has more than 20,000 employees, who all live and work in the countries where the Example Corp. offices are located. Example Corp. decides to launch a company-wide LDAP directory to improve internal communication, to make it easier to develop and deploy web applications, and to increase security and privacy.

Designing a directory tree for an international corporation involves determining how to collect directory entries logically, how to support data management, and how to support replication on a global scale.

In addition, Example Corp. wants to create an extranet for use by its parts suppliers and trading partners. An extranet is an extension of an enterprise's intranet to external clients.

The following sections describe the steps in the process of deploying a multinational directory service and extranet for Example Corp. International.

9.2 Design example: A multinational enterprise and its extranet 131

Page 130 Page 132
Page 131
Image 131
HP UX Direry Server Design example a multinational enterprise and its extranet, Local enterprise tuning and optimizations
Page 130 Page 132

UX Direry Server specifications

HP UX Directory Server is a robust and scalable solution designed for managing directory information within enterprise networks. Developed by Hewlett-Packard (HP), this server offers an extensive set of features tailored to meet the needs of organizations that require an efficient way to store, manage, and retrieve identity and access data.

One of the key features of HP UX Directory Server is its ability to handle large directories with significant volumes of data. Built on a highly optimized architecture, it provides excellent performance and can support millions of entries without sacrificing speed or reliability. This capability makes it an ideal choice for large-scale deployments in enterprises that require high availability and responsiveness.

In addition to its scalability, HP UX Directory Server supports a wide range of protocols, including LDAP (Lightweight Directory Access Protocol), which ensures seamless integration with diverse applications and systems across various platforms. The server maintains standards compliance, which facilitates interoperability and simplifies administration tasks.

Security is a top priority for HP UX Directory Server, offering an array of features to protect sensitive information. It supports secure data transmission via TLS/SSL protocols, ensuring encrypted communication between clients and servers. Advanced access controls allow administrators to define fine-grained permissions, helping to safeguard directory data against unauthorized access.

Another salient feature of HP UX Directory Server is its replication capabilities. The server can replicate directory data across multiple instances, ensuring data consistency and availability in distributed environments. This feature is essential for businesses operating across different geographical locations or requiring failover solutions for disaster recovery.

HP UX Directory Server also comes equipped with tools for data management, including an intuitive administration console for configuring and monitoring the server. Additionally, it offers customizable schema capabilities, enabling organizations to tailor the directory structure to fit their specific needs.

Integration with existing identity management solutions is streamlined through connectors and APIs, allowing organizations to extend their directory services and enhance user experience.

In summary, HP UX Directory Server is a powerful directory management solution that combines scalability, security, and integration flexibility. Its support for industry standards, advanced replication, and comprehensive administrative tools makes it an essential asset for organizations seeking to manage identity and access efficiently. By leveraging this technology, businesses can improve their operational efficiency and ensure a secure and organized approach to directory management.
Top Page Image Contents