Mapping the Properties Configuration
The Directory Proxy Server 5 property objects enable you to specify specialized restrictions that
LDAP clients must follow. Most of the functionality of property objects is available in Directory
Proxy Server 6, although it is supplied by various elements of the new architecture. The
following sections describe how to map the Directory Proxy Server 5 property objects to the
corresponding 6.0 functionality.
Attribute Renaming Property
In Directory Proxy Server 5, attribute renaming is defined by the
ids-proxy-sch-RenameAttribute
object class. This object uses the
ids-proxy-con-server-attr-name
and
ids-proxy-con-client-attr-name
attributes to
specify which attributes must be renamed by Directory Proxy Server.
The attribute renaming functionality is replaced in Directory Proxy Server 6 by the
attr-name-mappings
property of an LDAP data source. This property is multi-valued, and
takes values of the form
client-attribute-name
#
server-attribute-name
. In a client request,
Directory Proxy Server renames the
client-attribute-name
to the
server-attribute-name
.
In a response, Directory Proxy Server renames the
server-attribute-name
to the
client-attribute-name
.
To configure this property, use the following command:
$ dpconf set-ldap-data-source-prop
data-source-name
\
attr-name-mappings:
client-attribute-name
#
server-attribute-name
Forbidden Entry Property
In Directory Proxy Server 5, the
ids-proxy-sch-ForbiddenEntryProperty
object is used to
specify a list of entries or attributes that are hidden from client applications. In Directory Proxy
Server 6.0 this functionality is achieved by creating a
search-data-hiding-rule
for a request
filtering policy.
In Iplanet Directory Access Router 5.0 (IDAR) these configuration attributes are stored under
ids-proxy-con-Name=
group-name
,ou=groups,ou=pd2,ou=iDAR,o=services
. In Directory
Proxy Server 5.2, these configuration attributes are stored under
ou=groups,cn=
user-defined-name
,ou=dar-config,o=NetscapeRoot
.
The following table maps the attributes of the
ids-proxy-sch-ForbiddenEntryProperty
object to the corresponding properties of a search data hiding rule in Directory Proxy Server
6.0. For information about creating search data hiding rules, see “To Create Search Data Hiding
Rules” in
Sun Java System Directory Server Enterprise Edition 6.0 Administration Guide
.
Mapping the Properties Configuration
Chapter 6 • Migrating Directory Proxy Server
97
Sun Confidential: Registered
Summary of Contents for Sun Java System Directory Server Enterprise Edition 6.0
Page 7: ...Index 145 Contents 7 Sun Confidential Registered...
Page 8: ...8 Sun Confidential Registered...
Page 10: ...10 Sun Confidential Registered...
Page 13: ...Examples EXAMPLE 7 1 Sample Export Configuration File 109 13 Sun Confidential Registered...
Page 14: ...14 Sun Confidential Registered...
Page 36: ...36 Sun Confidential Registered...
Page 68: ...68 Sun Confidential Registered...