plug-in signatures and the DSML-over-HTTP protocol
optional attribute encryption feature
Sun ONE Directory Server 5.2 introduces extended scoping of the nested role
As a new feature in Directory Server 5.2, any search operation may
test the existence of a CoS generated attribute or compare its value.
The names of the virtual attributes may be used in any filter string,
whether from a client search operation or an internal filter used in a
filtered role. Directory Server 5.2 also supports virtual attributes in
VLV (virtual list view) operations and in server-side sorting
controls, just like any real attribute.
Viewing Effective Rights
Some ACI keywords that were used in earlier releases of Directory Server have
been deprecated in Sun ONE Directory Server 5.2. However, for reasons of
backward compatibility, they are still supported.
Password Policies
Sun ONE Directory Server 5.2 introduces many new replication features:
-Multi-master replication (MMR) over wide area networks (WANs) allows you
to create replication agreements between geographically distant masters to
distribute your data more effectively.
-MMR now supports four simultaneous, fully connected masters which
provides additional failover protection.
-Binary copy can make the initialization of large replicas much faster.
-Fractional replication allows you to specify the set of attributes that will be
replicated to distribute your data more efficiently.
-New command-line tools help you monitor your replication deployment.
Replication Over a WAN
새로 추가된 Schema
20subscriber.ldif
30ns-common.ldif
50ns-admin.ldif
50ns-certificate.ldif
50ns-directory.ldif
50ns-legacy.ldif
50ns-mail.ldif
50ns-mlm.ldif
50ns-msg.ldif
50ns-netshare.ldif
Modifying Replicated Schema Files
The replication mechanism cannot detect any changes you make directly to the
LDIF files that contain the schema. Therefore, if you update your schema as
described in “Modifying the Schema Files,” on page 328, your changes will not be
replicated to consumers even after restarting the master.
Directory Server 5.2 provides the following script to “push” the changes in a
schema file to consumers:
Windows platforms cd serverRoot
bin\slapd\admin\bin\perl slapd-serverID\schema_push.pl
Other Installations # serverRoot/slapd-serverID/schema_push.pl
Use the following procedure to modify the schema files on a master server:
1. Add a new schema file or modify an existing one in the schema directory:
serverRoot/slapd-serverID/config/schema
Schema files in this directory are writable only by the system user defined
during installation. For more information, see “Modifying the Schema Files,”
on page 328.
2. Run the schema_push.pl script with the appropriate command given above.
This script does not actually “push” the schema to replicas, instead it writes a
special attribute into the schema files so that they will be replicated as soon as
they are loaded.
3. Restart the server. The server will load all schema files and the replication
mechanism will replicate the new schema to its consumers.
StartTLS is supported on Windows platforms as well as on Unix platforms.
supports the Generic Security Services API (GSSAPI)
over the Simple Authentication and Security Layer (SASL).
Pass-Through Authentication Plug-In
|