Manage suffixes
A suffix (also known as a naming context) is a DN that identifies the top entry in a locally held directory hierarchy. Because of the relative naming scheme used in LDAP, this DN is also the suffix of every other entry in that directory hierarchy. The embedded LDAP server can have multiple suffixes, each identifying a locally held directory hierarchy, for example, o=ibm,c=us.
The embedded LDAP server is pre-configured with a default suffix, dc=iswga, to make it easier to get started with the server. There is no requirement that we use this suffix. We can add our own suffixes and delete the pre-configured suffix.
There are two commonly used naming conventions for suffixes. One is based on the TCP/IP domain for your organization. The other is based on the organization's name and location. For example:
- Given a TCP/IP domain of mycompany.com, we might choose a suffix like dc=mycompany,dc=com, where the dc attribute refers to the domain component.
- If your company name is My Company and it is located in the United States, we might chose a suffix like one of the following examples:
o=My Company o=My Company,c=US ou=Widget Division,o=My Company,c=US
Where ou is the name for the organizationalUnit object class, o is the organization name for the organization object class, and c is a standard two letter country abbreviation used to name the country object class.
The following table lists the supported suffix elements and the corresponding object classes used when creating the top level entry for the suffix:
-->
Element Object class dc domain c country o organization ou organizationalUnit l locality
Steps
- Select Web > Manage > Runtime Component.
- Select Manage > Embedded LDAP > Suffixes. All current suffixes are listed. We can then add or delete suffixes as needed.
- Follow the prompts to complete the desired action.
Parent topic: Embedded LDAP server management