Deploy Sun Directory Server Password Synchronizer
To configure the Sun Directory Server Password Synchronization plug-in, use the template configuration file that is installed at TDI_install_dir/pwd_plugins/sun/pwsync.props.
When the Sun Directory Server plug-in is initialized, the configuration file is set as the last parameter of the registration line of the plug-in. The plug-in then reads the file. Some of the parameters in the configuration file are shared between the plug-in and the Java proxy. For a complete list of the supported properties, see theCommon configuration and utilities of password synchronization plug-ins chapter. The following property is specific to the Sun Directory Server Password Synchronizer:
- syncBase
- This optional property enables restriction of the part of the directory tree where the passwords are intercepted. The specified string value is the LDAP distinguished name (dn) of the root of the tree where the entry passwords are to be intercepted. For example, when you specify "o=ibm, c=us" it results in
- Intercepting the password update "cn=Kyle Nguyen, ou=Austin, o=IBM, c=US".
- Skipping the password update "cn=Henry Nguyen, o=SomeOtherCompany, c=US".
Setting no value for this property results in interception of the password updates in the entire directory tree.
- Register Sun Directory Server Password Synchronizer with Sun Directory Server
Use the Directory Server Management Console to register the Sun ONE Directory Server. To register the Sun Java System Directory Server, you must use the dsconf command-line tool that is shipped with the Sun Directory Server.- Enable Sun Directory Server logging for plug-ins
The Sun Directory Server Password Synchronizer logs messages in the error log of the Sun Directory Server. The messages from server plug-ins are not included in the error log for performance reasons.
Parent topic:
Sun Directory Server Password Synchronizer