Installing And Configuring LDAP-UX Client Services

Configure Your Directory

telephoneNumber telexNumber title userCertificate userPassword userSMIMECertificate x500UniqueIdentifier")

(version 3.0; acl "Enable self write for common attributes"; allow (write) (userdn = "ldap:///self"))

You can modify the default ACI and give appropriate access rights to change your own common attributes.

Step 9. Index important attributes for better performance of Netscape Directory Server.

Since many of your directory requests will be for the attributes listed below, you should index these to improve performance. If you don’t index, your directory may search sequentially causing a performance bottleneck. As a rule of thumb, databases containing more than 100 entries should be indexed by their key attributes.

The following attributes are recommended for indexing:

cn

objectclass

memberuid

uidnumber

gidnumber

uid

ipserviceport

iphostnumber

To index these entries with Netscape Directory Server, use the Console, Configuration tab, Indexes tab, Add Attributes button.

Step 10. Determine if you need to support enumeration requests. If you do,

increase the Look-Through limit, the Size limit, and the All-IDs-Threshold in the Netscape Directory Server.

Enumeration requests are directory queries that request all of a database, for example all users or all groups. Enumeration requests of large databases could reduce network and server performance. With large Netscape Directories and default configurations, enumerations may fail or provide incomplete data, but the default configuration also may prevent performance problems from enumerations.

If you need to support enumerations with large Netscape Directories, increase the listed parameters as described in Preparing Your LDAP Directory for LDAP-UX Integration available at http://docs.hp.com/hpux/internet/#LDAP-UX%20Integration.

24

Chapter 2