Front cover - IBM Redbooks

14.3.1 Configuration of LDAP server
To create this separate LDAP infrastructure, IBM’s Directory Server was installed
on a basic Windows 2000 Service Pack 3 machine. After the base software was
installed, users were created in the LDAP directory by importing an LDIF file.
This LDIF file contained different LDAP Organizational Units (OUs) than the ones
that were used in the Domino LDAP (East and West). The OUs created for this
server were called Admin, Sales, Production, and Editorial. Several users were
created for each OU.
The LDIF file entry for a single user that was created, showing what fields were
created for each person, is displayed in Example 14-1.
Example 14-1 LDIF example for one person
dn: UID=MMilza,OU=Admin,O=Redbooks,C=US
objectclass: eDominoAccount
objectclass: inetOrgPerson
objectclass: organizationalPerson
objectclass: person
objectclass: top
mail: M.Milza@redbooks.com
fullName: CN=Matt Milza,OU=East,O=Redbooks
title: IT Mgr
mailSystem: 1
givenName: Matt
sn: Milza
cn: Matt Milza
uid: MMilza
userid: mmilza
mailDomain: Redbooks
mailServer: CN=itsosec-dom,OU=Servers,O=Redbooks
mailFile: mail\mmilza
Note: In this LDIF example, “dn” corresponds to the user’s LDAP hierarchical
name, and “fullName” corresponds to the user’s Lotus Notes hierarchical
name.
14.3.2 Pointing the Lotus Domino server to the new LDAP
Next, the Lotus Domino server configuration must be changed so that it can
authenticate with the IBM Directory Server’s LDAP directory. Domino “Directory
Assistance” capabilities are leveraged to allow Domino to authenticate to an
external LDAP directory.
Chapter 14. Scenario implementation details 611