240
Novell eDirectory 8.8 Administration Guide
no
vd
ocx (
E
NU)
01
F
ebr
ua
ry
200
6
Enabling Encrypted Replication at the Replica Level using LDAP
IMPORTANT:
We strongly recommend you to use iManager for enabling encrypted replication.
To encrypt replication, you need to use the attribute dsEncryptedReplicationConfig. The syntax is:
enable/disable flag#destination replica number#source replica number
For more information on the syntax, refer to
“Enabling Encrypted Replication at the Partition Level
Using LDAP” on page 238
.
When you specify the replicaNumber of the replicas in the above syntax, you enable the encrypted
replication between those replicas. consider the following example syntaxes:
• 1#0#1: Encrypted replication is enabled from and to replica number 1; to and from, every other
replica in the partition.
• 0#3#1: Encrypted replication is disabled between replica numbers 3 and 1.
• 0#1#1: Encrypted replication is disabled for replica number 1.
The following is a sample LDIF file that disables encrypted replication between replica numbers 1
and 3:
dn: o=ou
changetype: modify
replace: dsEncryptedReplicationConfig
dsEncryptedReplicationConfig: 0#3#1
Partition Operations
When you split a partition, the encrypted replication configuration in the parent partition is inherited
by the child partition. When you merge a partition, the encrypted replication configuration of the
parent partition is retained in the resultant partition.
9.2.2 Adding a New Replica to a Replica Ring
Adding new replica to a replica ring is affected by whether encrypted replication is enabled or
disabled for the partition at the partition and replica level.
For more information on adding a replica to a replica ring, refer to
Section 5.5, “Administering
Replicas,” on page 133
.
At each of the above levels, you have different scenarios depending on which version of eDirectory
server you are trying to add to the replica ring, as explained in the following sections:
•
“Enabling Encrypted Replication at the Partition Level” on page 240
•
“Enabling Encrypted Replication at the Replica Level” on page 245
Enabling Encrypted Replication at the Partition Level
The scenarios vary depending on the version of eDirectory server you are trying to add. This section
contains the following information:
•
“Adding Pre-eDirectory 8.8 Servers to the Replica Ring” on page 241
Summary of Contents for EDIRECTORY 8.8 - GUIDE
Page 4: ...novdocx ENU 01 February 2006...
Page 16: ...16 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 68: ...68 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 90: ...90 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 116: ...116 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 128: ...128 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 184: ...184 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 249: ...250 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 307: ...308 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 333: ...334 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 371: ...372 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 439: ...440 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 519: ...520 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 529: ...530 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...
Page 555: ...556 Novell eDirectory 8 8 Administration Guide novdocx ENU 01 February 2006...