Configuration

4. Restart the computer – The system needs to be restarted after installing the IBM SecureWay Directory.

As mentioned above, the configuration (step three from above) can also be done after the installation. It is explained in the section that follows. The database configuration can also be done through the administrator GUI, which is explained in 7.3, “Database Configuration” on page 169.

The online documentation can be accessed after installation using a Web browser as follows wherex:\<inst_dir>is the root installation directory (default: C:\Program Files\IBM\LDAP\), and<language>is the installation language directory (default: enUS1252 for English):

The Installation and Configuration Guide:

x:\<inst_dir>\nls\html\<language>\config\wparent.htm The Administration Help:

x:\<inst_dir>\web\<language>\help\parent.htm The Directory Management Tool:

x:\<inst_dir>\nls\html\<language>\dmt\dparent.htm The C Programming Reference:

x:\<inst_dir>\doc\progref.htm The JNDI Programming Guide:

Unzip x:\<inst_dir>\java\ibmjndi.zip and load ibmjndi\Guide.html

6.1.3 Configuration

This section describes the third step from the installation above, which you are either prompted for during the InstallShield installation or by using the ldapxcfg configuration utility after the installation. The following discussion is based on ldapxcfg, but it equally applies to the InstallShield configuration as

You can either launch the ldapxcfg utility manually or double-click the SecureWay Directory Configuration icon in the IBM SecureWay Directory folder on the desktop. There are three options to configure as shown in Figure 25 below.

Figure 25. IBM SecureWay directory configuration (using ldapxcfg)

The installation and configuration utility determines if it is a new installation or an upgrade from an earlier version to the current version 3.1. If it is an upgrade, a prompt window will ask you whether you want to migrate the directory. If you choose to migrate, the migration will be done automatically. Such a migration concerns the flat files containing schema definitions and the configuration file; the database does not need to be migrated (see also 4.6, “Migration from the Previous Release” on page 91). The old schema files will be kept, and the old configuration file will be renamed to slapd21.conf. On the panel shown in Figure 25, you have three options to configure; they can be done all at once by selecting all options or one after the other, but all must be done.

• To set the directory administrator name (DN) and password:

1. Select Set the LDAP administrator name and password and click the Next > button.

2. Type in the administrator DN (or accept the default DN) and type in a password and proceed.

1. Select Create the directory DB2 database and click the Next > button.

2. The installation and configuration utility will ask you if you want to use the default LDAP DB2 database for the directory server or if you want to configure the directory server to use an existing database. The utility determines if an LDAP database currently exists. If you choose to create a new database while an LDAP database already exists, all data will be lost. It is, therefore, highly recommended to back up an existing database, for example, by using the db2ldif utility. Select whether you want to create a new, or use an existing database.

3. If you choose to use a default database, a new database instance will be created. The default database may be adapted to support UTF-8 (see 4.3, “UTF-8 Support” on page 83). If you plan to use this IBM SecureWay Directory feature, you have to select Create the default UCS-2 DB2 database (UTF-8).

4. If your choice is to use an existing database, you have to provide the following information about this existing database:

• Database name • Database instance

• Database system administrator ID

• Database system administrator password

• To configure a Web server:

1. Ensure that the Web server is installed and configured.

2. Select Configure a web server for directory administration and click the Next > button.

3. Choose the respective server from the list and click the Next > button. Before you move on, you may want to browse through the database configuration description in 7.3, “Database Configuration” on page 169. It describes the database creation through the administrator GUI. The basic considerations, however, are the same and apply to this section as well.

Note

The database name ldapdb2 is reserved by the IBM SecureWay Directory. Do not use it for your own database name.

4. Type the name (or accept the proposed path and name if it is correct) of the configuration file of your server and click the Next > button to proceed.

5. Do not forget to restart the Web server after its configuration has been changed for these changes to take effect.

The ldapxcfg utility gathers all information that is needed to complete each of the above three tasks before presenting a summary screen and requesting a final click on Configure before it executes the configuration change.

If you also need SSL for secured LDAP communication, you will have to install and configure the IBM GSKit. Please read 5.3, “SSL Utilities” on page 108 and 5.4, “Configuring SSL Security” on page 111 for further information. After installation and configuration, the IBM SecureWay Directory server is ready to be started. If not already done, a database must be created (or configured), and then at least one suffix must be defined before any data can be imported. This can conveniently be done through the administration GUI. Please go to Chapter 7, “LDAP Data and System Administration” on page 159 and follow the directions provided.