Administrative group tasks
Use this information to manage administrative groups.
The administrative group provides the ability to provide administrative capabilities without having to share a single ID and password among the administrators. Members of the administrative group have their own unique IDs and passwords. The administrative group member DNs must not match each other, and they must also not match the IBM Directory Server administrator's DN. Conversely, the IBM Directory Server administrator DN must not match the DN of any administrative group member.
This rule also applies to the Kerberos or Digest-MD5 IDs of the IBM Directory Server administrator and the administrative group members. These DNs must not match any of the IBM Directory Server's replication supplier DNs. This also means that IBM Directory Server's replication supplier DNs must not match any of the administrative group member DNs or the IBM Directory Server administrator DN.
The IBM Directory Server's replication supplier DNs can match each other.
- Enabling the administrative group
Use this information to enable the administrative group.
- Adding, editing, and removing administrative group members
Use this information to add, edit, or remove administrative group members.
Parent topic:
Administering Directory Server
Related concepts
Administrative access