openldap/doc/guide/admin/config.sdf

71 lines
2.9 KiB
Plaintext
Raw Normal View History

1999-10-01 00:57:45 +08:00
# $OpenLDAP$
2010-04-14 06:17:29 +08:00
# Copyright 1999-2010 The OpenLDAP Foundation, All Rights Reserved.
1999-04-24 07:41:45 +08:00
# COPYING RESTRICTIONS APPLY, see COPYRIGHT.
1999-04-24 07:00:44 +08:00
H1: The Big Picture - Configuration Choices
2000-07-30 23:18:55 +08:00
This section gives a brief overview of various {{TERM:LDAP}} directory
2006-12-08 13:02:21 +08:00
configurations, and how your Standalone LDAP Daemon {{slapd}}(8)
fits in with the rest of the world.
1999-04-24 07:00:44 +08:00
H2: Local Directory Service
1999-04-24 07:00:44 +08:00
2006-12-08 05:50:15 +08:00
In this configuration, you run a {{slapd}}(8) instance which provides
directory service for your local domain only. It does not interact
with other directory servers in any way. This configuration is shown
in Figure 3.1.
1999-04-24 07:00:44 +08:00
2007-08-01 19:30:50 +08:00
!import "config_local.png"; align="center"; title="Local service via slapd(8) configuration"
FT[align="Center"] Figure 3.1: Local service configuration.
1999-04-24 07:00:44 +08:00
Use this configuration if you are just starting out (it's the one the
quick-start guide makes for you) or if you want to provide a local
service and are not interested in connecting to the rest of the world.
It's easy to upgrade to another configuration later if you want.
H2: Local Directory Service with Referrals
1999-04-24 07:00:44 +08:00
2006-12-08 05:50:15 +08:00
In this configuration, you run a {{slapd}}(8) instance which provides
directory service for your local domain and configure it to return
referrals to other servers capable of handling requests. You may
run this service (or services) yourself or use one provided to you.
This configuration is shown in Figure 3.2.
1999-04-24 07:00:44 +08:00
2007-08-01 19:30:50 +08:00
!import "config_ref.png"; align="center"; title="Local service with referrals"
FT[align="Center"] Figure 3.2: Local service with referrals
1999-04-24 07:00:44 +08:00
Use this configuration if you want to provide local service and
participate in the Global Directory, or you want to delegate
responsibility for {{subordinate}} entries to another server.
1999-04-24 07:00:44 +08:00
H2: Replicated Directory Service
1999-04-24 07:00:44 +08:00
slapd(8) includes support for {{LDAP Sync}}-based replication, called
{{syncrepl}}, which may be used to maintain shadow copies of directory
information on multiple directory servers. In its most basic
configuration, the {{master}} is a syncrepl provider and one or more
{{slave}} (or {{shadow}}) are syncrepl consumers. An example
2008-03-20 06:17:04 +08:00
master-slave configuration is shown in figure 3.3. Multi-Master
configurations are also supported.
1999-04-24 07:00:44 +08:00
2008-03-20 06:17:04 +08:00
!import "config_repl.png"; align="center"; title="Replicated Directory Services"
FT[align="Center"] Figure 3.3: Replicated Directory Services
1999-04-24 07:00:44 +08:00
This configuration can be used in conjunction with either of the
first two configurations in situations where a single {{slapd}}(8)
instance does not provide the required reliability or availability.
1999-04-24 07:00:44 +08:00
H2: Distributed Local Directory Service
1999-04-24 07:00:44 +08:00
In this configuration, the local service is partitioned into smaller
2002-04-20 15:24:14 +08:00
services, each of which may be replicated, and {{glued}} together with
{{superior}} and {{subordinate}} referrals.
!if 0
An example of this configuration is shown in Figure 3.4.
1999-04-24 07:00:44 +08:00
!import "config_dist.gif"; align="center"; title="Distributed Local Directory Services"
FT[align="Center"] Figure 3.4: Distributed Local Directory Services
!endif