www.bonsaiframework.com
Page tree

Versions Compared

Old Version 15

changes.mady.by.user Tin Pham

Saved on

compared with

New Version 16

changes.mady.by.user Tin Pham

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

OpenDJ replication requires that you use fully qualified domain names, such as opendj.example.com so we'll use,

opendjopendj1.krypton.com and www.opendjopendj1.krypton.com

For your named server instance and then replication use (ask Dimitri if this makes sense)

opendj1Subsequent server instances with replication will increment the number for example

opendj2.krypton.com and www.opendj1opendj2.krypton.com

Ensure that your dns entries are in your host file,

Code Block
languagebash
127.0.0.1   localhost

127.0.1.1   opendj1
127.0.1.1   www.opendj1.krypton.com
127.0.1.1   opendj1.krypton.com
127.0.1.1   www.opendj.krypton.com
127.0.1.1   opendj.krypton.com
127.0.1.1   www.krypton.com
127.0.1.1   krypton.com

# The following lines are desirable for IPv6 capable hosts
::1     ip6-localhost ip6-loopback
fe00::0 ip6-localnet
ff00::0 ip6-mcastprefix
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters

This is the hosts file from Ubuntu 14.x. Currently not sure I need the www.krypton.cm... talk to Dimitri.

Setup Java

Warning
Java 8 is not supported with this version so use Java 7.

...

Code Block
languagebash
sudo mv /home/serveradmin/java/ /opt/java-forgerock/
sudo chown -R serveradmin:staff /opt/java-forgerock/
sudo chmod -R 750 /opt/java-forgerock/

II I thought about using oracle server jre edition, but given certificate things, it's best to use the most popular and tested which is standard jre.

...

Code Block
languagebash
export OPENDJ_JAVA_HOME=/opt/java-forgerock

export OPENDS_JAVA_HOME=/opt/java-forgerock

There is still a need for OPENDS environment. Variable. Looks like since 2.4.5 this was somewhat fixed (ie OPENDJ is now being used), but so is some parts of the code are still using OPENDS so you need both. Report this when I have time.

...

Code Block
sudo mv /home/serveradmin/opendj/ /opt/
cd /opt
sudo chown -R serveradmin:staff ./opendj/
sudo chmod -R 750 ./opendj/

Now with LXC, you can easily setup multiple machines (instead of using just one machine) to try out replication so I have dropped the opendj0 convention. This opendj1 folder name convention from previous tutorials. Uniformity also makes it easier to compare instances too.

...

Code Block
Provide the fully-qualified directory server host name that will be used when
generating self-signed certificates for LDAP SSL/StartTLS, the administration
connector, and replication [opendj1]: opendjopendj1.krpton.com

It is unclear to me if I should use the primary name here or use an instance name.

...