OpenDJ | Mirror of https://stash.forgerock.org/projects/OPENDJ/repos/opendj

 by   OpenRock Java Updated: 2 years ago - 3.0.0 License: No License

Download this library from

Build Applications

kandi X-RAY | OpenDJ REVIEW AND RATINGS

This Maven project contains the OpenDJ product suite, comprising of an open source LDAP Directory Server and client tools. All modules are 100% Java based and require Java 7. OpenDJ is a downstream build of the OpenDS project, with a different name to avoid trademark issues. Complete documentation for this product may be found online at http://www.forgerock.com/opendj.html. This product is made available under the Common Development and Distribution License (CDDL). The complete text for this license, and for alternate licenses of included components, may be found in the legal-notices directory.

kandi-support
Support

  • OpenDJ has a low active ecosystem.
  • It has 41 star(s) with 45 fork(s).
  • It had no major release in the last 12 months.
  • It has a neutral sentiment in the developer community.

quality kandi
Quality

  • OpenDJ has 0 bugs and 0 code smells.

security
Security

  • OpenDJ has no vulnerabilities reported, and its dependent libraries have no vulnerabilities reported.
  • OpenDJ code analysis shows 0 unresolved vulnerabilities.
  • There are 0 security hotspots that need review.

license
License

  • OpenDJ does not have a standard license declared.
  • Check the repository for any license declaration and review the terms closely.
  • Without a license, all rights are reserved, and you cannot use the library in your applications.

build
Reuse

  • OpenDJ releases are available to install and integrate.
  • Build file is available. You can build the component from source.
  • OpenDJ saves you 1330331 person hours of effort in developing the same functionality from scratch.
  • It has 586751 lines of code, 31752 functions and 2813 files with 0 % test coverage
  • It has high code complexity. Code complexity directly impacts maintainability of the code.
Top functions reviewed by kandi - BETA

kandi has reviewed OpenDJ and discovered the below as its top functions. This is intended to give you an instant insight into OpenDJ implemented functionality, and help decide if they suit your requirements.

  • Decodes a GeneralizedTime value .
  • Simplify the password change .
  • Decodes an attribute type .
  • main method for testing
  • Calculate the SASL digest MD5 digest of the given parameters .
  • Decodes an attribute class .
  • Parses command line arguments .
  • Determines the diff
  • Decodes a DIT ContentRule .
  • Process the operation and return boolean values .

OpenDJ Key Features

Mirror of https://stash.forgerock.org/projects/OPENDJ/repos/opendj

OpenDJ examples and code snippets

  • Is it possible to use start init.d service using Ansible?
  • How to connect to OpenDJ LDAP server (Docker)
  • How to fix `can't evaluate field extraHosts in type interface {}` in _helpers.tpl in helm
  • OpenDJ create new schema elements object classes and attributes types on cmd line
  • (opendj-ldap-sdk-2.6.0) bind method parameter - password char [ ]
  • Using wildcards with SET
  • CASE WHEN with COLLECT_SET

Is it possible to use start init.d service using Ansible?

- name: make sure {{opendj_service_name}} is started
  sysvinit:
      name: {{opendj_service_name}}
      state: started
      enabled: yes

How to connect to OpenDJ LDAP server (Docker)

-p 1389:1389 -p 1636:1636
-----------------------
docker run -it -p 1389:1389 -p 1636:1636 <image ID> /bin/bash
docker run -it --net=host <image ID> /bin/bash
-----------------------
docker run -it -p 1389:1389 -p 1636:1636 <image ID> /bin/bash
docker run -it --net=host <image ID> /bin/bash

How to fix `can't evaluate field extraHosts in type interface {}` in _helpers.tpl in helm

helm
├── Chart.yaml
├── charts
│   └── chart_a
│       ├── Chart.yaml
│       └── templates
│           └── configMap.yml
├── templates
│   └── _helpers.tpl
└── values.yaml
global:
  ldap:
    enabled: true
    type: opendj
    extraHosts:
    - host: opendj
      port: 3434
  ldapType: xxx
  ldapPort: 123
$ helm template .
---
# Source: helm/charts/chart_a/templates/configMap.yml
apiVersion: v1
kind: ConfigMap
metadata:
  name: cm
data:
  GLUU_LDAP_URL: release-name-xxx:123,opendj:3434
-----------------------
helm
├── Chart.yaml
├── charts
│   └── chart_a
│       ├── Chart.yaml
│       └── templates
│           └── configMap.yml
├── templates
│   └── _helpers.tpl
└── values.yaml
global:
  ldap:
    enabled: true
    type: opendj
    extraHosts:
    - host: opendj
      port: 3434
  ldapType: xxx
  ldapPort: 123
$ helm template .
---
# Source: helm/charts/chart_a/templates/configMap.yml
apiVersion: v1
kind: ConfigMap
metadata:
  name: cm
data:
  GLUU_LDAP_URL: release-name-xxx:123,opendj:3434
-----------------------
helm
├── Chart.yaml
├── charts
│   └── chart_a
│       ├── Chart.yaml
│       └── templates
│           └── configMap.yml
├── templates
│   └── _helpers.tpl
└── values.yaml
global:
  ldap:
    enabled: true
    type: opendj
    extraHosts:
    - host: opendj
      port: 3434
  ldapType: xxx
  ldapPort: 123
$ helm template .
---
# Source: helm/charts/chart_a/templates/configMap.yml
apiVersion: v1
kind: ConfigMap
metadata:
  name: cm
data:
  GLUU_LDAP_URL: release-name-xxx:123,opendj:3434

OpenDJ create new schema elements object classes and attributes types on cmd line

dn: cn=schema
changetype: modify
add: attributeTypes
attributeTypes: ( test-visible-startDate-oid NAME 'test-visible-startDate' EQUALITY caseIgnoreMatch ORDERING caseIgnoreOrderingMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 USAGE userApplications )
-
add: objectClasses
objectClasses: ( test-user-oid NAME 'test-user' SUP inetOrgPerson STRUCTURAL MUST (test-status $ description) MAY ( test-lang $ ds-pwp-password-policy-dn $ test-modificationUserId  ) )
-

(opendj-ldap-sdk-2.6.0) bind method parameter - password char [ ]

  connection = factory.getConnection();
  connection.bind("cn = Directory Mangager", password );

Using wildcards with SET

DECLARE @searchInput varchar
SET @searchInput = 'dm'

SELECT @searchInput 
-----------------------
DECLARE @searchInput varchar(50)
-----------------------
DECLARE @searchInput varchar(10)
SET @searchInput = 'dm'

CASE WHEN with COLLECT_SET

SELECT id, max(CASE WHEN productname='OpenDJ' THEN 1 ELSE 0 END) AS flag 
  FROM ds.forgerock
 GROUP BY id;

COMMUNITY DISCUSSIONS

Top Trending Discussions on OpenDJ
  • Does limiting an LDAP search by baseDN provide any benefit when the attribute being searched on has an index?
  • The path for certificate, private key and pfx files for OpenDJ version 3.0 install to be completed
  • How to verify OpenDJ respond to ldap request?
  • Is it possible to use start init.d service using Ansible?
  • How to connect to OpenDJ LDAP server (Docker)
  • How to fix `can't evaluate field extraHosts in type interface {}` in _helpers.tpl in helm
  • Can we load Schema (base schema) for OpenDJ using Novel Ldap api?
  • OpenDJ create new schema elements object classes and attributes types on cmd line
  • Migration OpenDJ to Directory Services 6.5
  • OpenDJ vs Directory Services
Top Trending Discussions on OpenDJ

QUESTION

Does limiting an LDAP search by baseDN provide any benefit when the attribute being searched on has an index?

Asked 2020-Dec-07 at 21:22

We are designing an LDAP schema (specifically for OpenDJ) and we primarily need to be able to search on the mail attribute. We don't need to do a substring search as the user would provide the whole email address when they log in.

We already have an index on the mail attribute. However we are also considering to sub-divide the user directory by the first letter of the email address as well (so all users with an email address that starts with the letter A would be in an ou=A subdirectory under ou=users. The only value I can see in doing this is that when we do searches for a user by email, we can limit the baseDN of the search, thus reducing the scope of the search to approximately 1/26 of the entire directory.

My primary question is, does limiting the baseDN of an LDAP search like this provide any improvement on performance if the attribute already has an index? Do indexes take into account the baseDN, or are they indexed over the whole directory?

A secondary question, if I'm allowed, is there any other usage for splitting the users directory by first letter (or any other arrangement) other than providing a more specific baseDN when searching?

ANSWER

Answered 2020-Dec-07 at 11:12

What you are thinking about seems like premature optimization when you don't even know if you have a performance issue. Also, indexes and processing a query is not a standard element of LDAP, it's an implementation detail of the technology you are using.

In OpenDJ, an index is configured and maintain for a whole database backend. The cost of a lookup in the email equality index and returning a single entry is the same whether you have 1 entry or 1 billion entries.

I have more than 20 years of experiences with LDAP and directory services, I've never seen any directory structured with splitting entries by the first letter of an attribute.

Source https://stackoverflow.com/questions/65173222

QUESTION

The path for certificate, private key and pfx files for OpenDJ version 3.0 install to be completed

Asked 2020-May-15 at 07:21

I am new to OpenDJ from ForgeRock. I installed version 3.0 on rhel 7 server along with Java version: 1.8.0_251 by following this instruction: https://backstage.forgerock.com/docs/opendj/3/install-guide/#chap-install. After install is completed with no ssl/tls, system threw...

Error reading configuration. Details:
javax.naming.CommunicationException: simple bind failed: 0.0.0.0:4444 [Root
exception is javax.net.ssl.SSLHandshakeException:
java.security.cert.CertificateException: No subject alternative names present]

After talking to our sys admin, I decided to give proper hostname/fqdn and obtained opendj.doamin.com.key, opendj.domain.com.crt and opendj.domain.com.pfx files.

hostname: opendj
domain: domain.com

My question is I am about to reinstall it but in where I have to place them so that I may avoid aforementioned exception? I'd like to believe the exception was thrown due to missing cert file.

ANSWER

Answered 2020-May-15 at 07:21

I don't believe it's missing the certificate file. It's most likely due to a change of behavior of JDNI with an update of JDK8. See https://stackoverflow.com/a/58930712/738708.

Source https://stackoverflow.com/questions/61802028

QUESTION

How to verify OpenDJ respond to ldap request?

Asked 2020-May-15 at 07:18

I stood up OpenDJ v3.0.0 on rhel 7 server with java version 1.8.0_251. I set ssl/tls to yes with self sign cert generated and it is empty no ldap schema is imported yet only baseDN was stated.

Once install was complete, I executed service opendj status and system said Running although executing /install/path/bin/status threw java.security.cert.CertificateException: No subject alternative names present.

With assumption of ldap service is running I executed following two diff sets of ldapsearch cmds to verify whether it is handling incoming ldap request or not base on this doc: https://backstage.forgerock.com/knowledge/kb/article/a54816700

./ldapsearch --hostname foo.domain.com --port 636 --useSsl --trustAll --bindDN "cn=Directory Manager" --bindPassword password --baseDN "" --searchScope base "(objectclass=*)" 1.1
dn:

./ldapsearch --port 389 --baseDN "" --searchScope base "(&)" alive healthy
dn: 

My question is with returned response as dn:, I can't tell OpenDJ is running properly or not. I'd appreciate your advice.

ANSWER

Answered 2020-May-15 at 07:18

The first error with Status is due to changes in JDK 8 where certificates subject name much match the hostname you are trying to connect to.

The second part of the question is not an error. It's expected. Your first query is requesting no attributes (trailing argument '1.1' means to return no attributes). The second query is requesting attributes that do not exist in the rootDSE for OpenDJ 3.0. These attributes were added to ForgeRock Directory Service version 6.5.0.

Source https://stackoverflow.com/questions/61806415

QUESTION

Is it possible to use start init.d service using Ansible?

Asked 2019-Nov-08 at 12:29

Ansible will fail the task below

- name: Start opendj
  service: name={{opendj_service_name}} state=started enabled=yes

because the service is a init.d service and not systemd

Is it possibe to start a init.d service using Ansible?

ANSWER

Answered 2019-Nov-08 at 12:29

Have you tried as below

- name: make sure {{opendj_service_name}} is started
  sysvinit:
      name: {{opendj_service_name}}
      state: started
      enabled: yes

Source https://stackoverflow.com/questions/58765394

QUESTION

How to connect to OpenDJ LDAP server (Docker)

Asked 2019-Sep-11 at 05:58

I am trying to connect(bind) to an OpenDJ server in Docker.

(I know how to connect to regular (not Docker) OpenDJ server)

OpenDJ seems to run, but when I try to connect to it with a ldap browser, it says "Unabled to connect"

          --- Server Status ---
Server Run Status:        Started
Open Connections:         1

          --- Server Details ---
Host Name:                14e1e92e962e
Administrative Users:     cn=Directory Manager
Installation Path:        /opt/opendj
Instance Path:            /opt/opendj/data
Version:                  OpenDJ Server 4.4.3
Java Version:             1.8.0_111
Administration Connector: Port 4444 (LDAPS)

          --- Connection Handlers ---
Address:Port : Protocol               : State
-------------:------------------------:---------
--           : LDIF                   : Disabled
0.0.0.0:161  : SNMP                   : Disabled
0.0.0.0:1389 : LDAP (allows StartTLS) : Enabled
0.0.0.0:1636 : LDAPS                  : Enabled
0.0.0.0:1689 : JMX                    : Disabled
0.0.0.0:8080 : HTTP                   : Disabled

          --- Data Sources ---
Base DN:     dc=example,dc=com
Backend ID:  userRoot
Entries:     1
Replication:
[root@localhost ~]# docker ps
CONTAINER ID        IMAGE                         COMMAND                CREATED             STATUS              PORTS                          NAMES
14e1e92e962e        openidentityplatform/opendj   "/opt/opendj/run.sh"   18 hours ago        Up 18 hours 
[root@localhost ~]# ifconfig
docker0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 172.17.0.1  netmask 255.255.0.0  broadcast 172.17.255.255
        inet6 fe80::42:5ff:fe0f:a03  prefixlen 64  scopeid 0x20<link>
        ether ********  txqueuelen 0  (Ethernet)
        RX packets 5  bytes 254 (254.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 7  bytes 647 (647.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

enp3s0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 192.168.0.89  netmask 255.255.255.0  broadcast 192.168.0.255
        inet6 fe80::1db8:91e1:5276:4f9  prefixlen 64  scopeid 0x20<link>
        ether ********  txqueuelen 1000  (Ethernet)
        RX packets 796434  bytes 512206712 (488.4 MiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 479946  bytes 41277150 (39.3 MiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
[root@localhost ~]# docker run -it 1e03b62c213e /bin/bash
Instance data Directory is empty. Creating new DJ instance
BASE DN is dc=example,dc=com
Password set to password
Running /opt/opendj/bootstrap/setup.sh
Setting up default OpenDJ instance

Configuring Directory Server ..... Done.
Configuring Certificates ..... Done.
Creating Base Entry dc=example,dc=com ..... Done.
Starting Directory Server ...... Done.

To see basic server configuration status and configuration, you can launch
/opt/opendj/bin/status

Server Run Status:        Started

The LDAP server is running at 192.168.0.89 with a port of 1389. So I try to connect with the below. I am unable to fetch Base DN as well. I tried putting the BaseDN manually too. I tried 172.17.0.1, but no luck. (It seems to be a docker ip. (ifconfig))

Question : But with docker, do I need a different hostname? or IP? Or need additional configuration setup? (BTW, I put IP in hostname and successfully connected many times.)

enter image description here

enter image description here

enter image description here

Error message :

Error while opening connection - Unable to connect java.lang.Exception: Unable to connect at org.apache.directory.studio.connection.core.io.api.DirectoryApiConnectionWrapper$1.run(DirectoryApiConnectionWrapper.java:251) at org.apache.directory.studio.connection.core.io.api.DirectoryApiConnectionWrapper.runAndMonitor(DirectoryApiConnectionWrapper.java:1312) at org.apache.directory.studio.connection.core.io.api.DirectoryApiConnectionWrapper.doConnect(DirectoryApiConnectionWrapper.java:281) at org.apache.directory.studio.connection.core.io.api.DirectoryApiConnectionWrapper.connect(DirectoryApiConnectionWrapper.java:172) at org.apache.directory.studio.connection.core.jobs.OpenConnectionsRunnable.run(OpenConnectionsRunnable.java:111) at org.apache.directory.studio.connection.core.jobs.StudioConnectionJob.run(StudioConnectionJob.java:109) at org.eclipse.core.internal.jobs.Worker.run(Worker.java:60)

Unable to connect

ANSWER

Answered 2019-Sep-11 at 05:58

look at your docker ps command, you do not publish any ports

add this to your docker run command:

-p 1389:1389 -p 1636:1636

Source https://stackoverflow.com/questions/57882403

QUESTION

How to fix `can't evaluate field extraHosts in type interface {}` in _helpers.tpl in helm

Asked 2019-Aug-07 at 11:57

I am trying to get some values from Umbrella chart in helm in _helpers.tpl but I for some reason I am getting the error executing "gluu.ldaplist" at <.Values.ldap.extraHo...>: can't evaluate field extraHosts in type interface {}

This is what I am trying to do. _helpers.ptl

{{- define "gluu.ldaplist" -}}
{{- $hosts := .Values.ldap.extraHosts -}}
{{- $genLdap := dict "host" (printf "%s-%s" .Release.Name .Values.ldapType) "port" .Values.ldapPort -}}
{{- $hosts := prepend $hosts $genLdap -}}
{{- $local := dict "first" true -}}
{{- range $k, $v := $hosts -}}
{{- if not $local.first -}},{{- end -}}{{- printf "%s:%.f" $v.host $v.port -}}{{- $_ := set $local "first" false -}}
{{- end -}}
{{- end -}}

And this is part of values.yml for the umbrella chart values.yml

ldap:
  enabled: true
  type: opendj
  extraHosts: [
    host: opendj,
    port: 3434
  ] #array of k,v e.g host: host1, port: port1

Directory structure

helm/
  charts/
     chart_a/
       templates/
          configMap.yml ----->>> this is where I want to use it
  templates/
     _helpers.tpl ---->>>> where the failing function is
  requirements.yml
  values.yml ---------->>> where the ldap values are

The configMap.yml looks like below

apiVersion: v1
kind: ConfigMap
metadata:
  name: {{ template "oxauth.fullname" . }}-cm
data:
  GLUU_CONFIG_ADAPTER: {{ .Values.global.configAdapterName | quote }}
  GLUU_LDAP_URL: {{ template "gluu.ldaplist" . }}

NOTE: The _helpers.tpl is under the main/umbrella chart. chart_a is a subchart.

Expected results are something like GLUU_LDAP_URL:"opendj:3434"

Helm version:

Client: &version.Version{SemVer:"v2.10.0", GitCommit:"9ad53aac42165a5fadc6c87be0dea6b115f93090", GitTreeState:"clean"}
Server: &version.Version{SemVer:"v2.10.0", GitCommit:"9ad53aac42165a5fadc6c87be0dea6b115f93090", GitTreeState:"clean"}

Expected result is that the function {{- define "gluu.ldaplist" -}} in _helpers.tpl completes without error even if no values are provided in the array. If there are values provided, the expected string is host:port as output.

If this can be done in another way, I welcome any suggestion.

ANSWER

Answered 2019-Aug-07 at 11:57

This can be solved with global values which allow values in the parent chart to override (or supply unspecified) values in the child subcharts.

From the Helm docs on Subcharts and Global Values:

  1. A subchart is considered “stand-alone”, which means a subchart can never explicitly depend on its parent chart.
  2. For that reason, a subchart cannot access the values of its parent.
  3. A parent chart can override values for subcharts.
  4. Helm has a concept of global values that can be accessed by all charts.

(At first I didn't think to search for "helm subchart" but once I did an Internet search for that term, this was the first or second result)

Here's a minimal example that solves your issue:

Directory Structure

helm
├── Chart.yaml
├── charts
│   └── chart_a
│       ├── Chart.yaml
│       └── templates
│           └── configMap.yml
├── templates
│   └── _helpers.tpl
└── values.yaml

Note: I added Chart.yaml files to make it actually work, renamed values.yml to values.yaml so that it works by default without extra flags, and removed requirements.yml since it wasn't necessary to reproduce the problem and solution.

values.yaml

global:
  ldap:
    enabled: true
    type: opendj
    extraHosts:
    - host: opendj
      port: 3434
  ldapType: xxx
  ldapPort: 123

The key was to nest what you had under a special global key. Note, I also added ldapType and ldapPort since they were in your _helpers.tpl, and I fixed the YAML structure you had under extraHosts. What was there before didn't actually represent a list of maps with host and port keys. Without this fix, the helm command doesn't fail but doesn't output what you want either.

Result

$ helm template .
---
# Source: helm/charts/chart_a/templates/configMap.yml
apiVersion: v1
kind: ConfigMap
metadata:
  name: cm
data:
  GLUU_LDAP_URL: release-name-xxx:123,opendj:3434

Source https://stackoverflow.com/questions/57364093

QUESTION

Can we load Schema (base schema) for OpenDJ using Novel Ldap api?

Asked 2019-Apr-03 at 08:39

We are using Novel Ldap Api for all LDAP operations, i want to load my base schema ldif file to opendj without restarting the openDJ server.

So far, post setup we are manually copying the schema file to /config/schema location and we wanted it to do through Java code.

Since we already using Novel Ldap for all LDAP operations (modify, delete, read, add entry), we have to use the same. When i tried, iam getting below exception, is there any solution please share?

SEVERE: Exception getting LDAP connection: LDAPLocalException: com.novell.ldap.ldif_dsml.LDIFReader: Version line must be the first meaningful line(on line 9 of the file) (82) Local Error at com.novell.ldap.util.LDIFReader.(LDIFReader.java:156) at com.novell.ldap.util.LDIFReader.(LDIFReader.java:80)

ANSWER

Answered 2019-Apr-03 at 08:39

It looks like the Novell LDIF reader is strictly accepting LDIF version 1 from RFC 2849. The first line should contain version: 1 OpenDJ does support adding schema over LDAP, it must be a change of cn=schema, adding values to the attributeTypes and objectClasses attributes.

Source https://stackoverflow.com/questions/55359122

QUESTION

OpenDJ create new schema elements object classes and attributes types on cmd line

Asked 2019-Feb-22 at 09:40

There’re any tutorial to explain how can i create ‘object classes’ and ‘attributes types’ on DS 6.5 from command line?

I’d like to import by command line a ldif file which have the following structure:

dn: cn=schema
objectClass: subschema
objectClass: ldapSubentry
objectClass: top
cn: schema
objectClasses: ( test-user-oid NAME 'test-user' SUP inetOrgPerson STRUCTURAL MUST (test-status $ description) MAY ( test-lang $ ds-pwp-password-policy-dn $ test-modificationUserId  ) )
modifyTimestamp: 20130411155332Z
attributeTypes: ( test-visible-startDate-oid NAME 'test-visible-startDate' EQUALITY caseIgnoreMatch ORDERING caseIgnoreOrderingMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 USAGE userApplications )
ds-sync-state: 00000131f62eceea0a4000000001
ds-sync-generation-id: 8408
modifiersName: cn=Directory Manager,cn=Root DNs,cn=config

On openLDAP we a ldap file like this:

attributetype ( 1.3.6.1.4.1.18060.0.4.3.2.1 
        NAME 'test-user' 
        DESC 'test'
        EQUALITY integerMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 
        SINGLE-VALUE 
 )

objectclass ( 1.3.6.1.4.1.18060.0.4.3.3.1 
        NAME 'ship'
        DESC 'test' 
        SUP top 
        STRUCTURAL 
        MUST cn 
        MAY ( test-user $ description ) 
 )

and apply the slaptest cmd.Is it similar on OpenDJ?

ANSWER

Answered 2019-Feb-22 at 09:40

Extending schema over LDAP with OpenDJ and ForgeRock Directory Services is fully documented on https://backstage.forgerock.com/docs/ds. It is slightly different from openLDAP syntax and method: it’s a modify operation of the cn=schema suffix adding values of the attributeTypes and objectClasses attributes.

Here’s the above example ready to be added over LDAP to OpenDJ, ForgeRock Directory Services, SunDSEE...

dn: cn=schema
changetype: modify
add: attributeTypes
attributeTypes: ( test-visible-startDate-oid NAME 'test-visible-startDate' EQUALITY caseIgnoreMatch ORDERING caseIgnoreOrderingMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 USAGE userApplications )
-
add: objectClasses
objectClasses: ( test-user-oid NAME 'test-user' SUP inetOrgPerson STRUCTURAL MUST (test-status $ description) MAY ( test-lang $ ds-pwp-password-policy-dn $ test-modificationUserId  ) )
-

Note that you will need to add all attributeTypes used in the test-user objectclass. And you should not add the ds-pwp-password-policy-dn which is an operational attribute and can be part of any entry.

Source https://stackoverflow.com/questions/54781506

QUESTION

Migration OpenDJ to Directory Services 6.5

Asked 2019-Feb-14 at 18:28

I'm currently use OpenDJ 2.6.4 in Suse Linux 11 and my goal is to upgraded to Directory Services 6.5. From what I read, especialy on Chapter 9. Before You Upgrade and Chapter 10. Upgrading a Directory Server, the process seems pretty simple, i.e, after checking Java version, backup and disable stuff we just need to execute the upgrade command.

This process run well or it's harder as it look?

From what I read on several release notes, i don't expect to have big changes on my current web application, is that right?

ANSWER

Answered 2019-Feb-14 at 18:28

That is correct, there should be no change to the applications (since the interface is standard LDAPv3).

If your OpenDS service is replicated, you can upgrade one server after another, with zero downtime for the overall service.

When upgrading from 2.6, you will probably need to upgrade the Java runtime as well, since DS 6.5 requires Java 8 (and also supports 11).

So, stop a server, backup the whole server, unzip DS 6.5, upgrade Java to 8+, run upgrade, start-ds.

You might want to test the upgrade process on a dev environment. If you don’t have a dev env yet, you can create one by just copying the whole OpenDJ 2.6.4 directory and databases to a different location or another server.

Source https://stackoverflow.com/questions/54694756

QUESTION

OpenDJ vs Directory Services

Asked 2019-Feb-14 at 18:26

I'm exploring the ForgeRock Product Documentation and i'm not sure what's the difference between "Directory Services 6.5" and "OpenDJ 3". There was a re-brand and it's the OpenDJ was renamed "Directory Services", is that it?

ANSWER

Answered 2019-Feb-14 at 18:26

ForgeRock Directory Services 6.5 is the continuation of OpenDJ by ForgeRock as a private branch (before that 99.95% of the contributions to OpenDJ were done by ForgeRock).

You can get a feel of the amount of changes between version 3 and version 6.5 by reading the release notes of all the ForgeRock releases. It's quite significant in 3 years.

Source https://stackoverflow.com/questions/54693399

Community Discussions, Code Snippets contain sources that include Stack Exchange Network

VULNERABILITIES

No vulnerabilities reported

INSTALL OpenDJ

You can use OpenDJ like any standard Java library. Please include the the jar files in your classpath. You can also use any IDE and you can run and debug the OpenDJ component as you would do with any other Java program. Best practice is to use a build tool that supports dependency management such as Maven or Gradle. For Maven installation, please refer maven.apache.org. For Gradle installation, please refer gradle.org .

SUPPORT

For any new features, suggestions and bugs create an issue on GitHub. If you have any questions check and ask questions on community page Stack Overflow .

Implement OpenDJ faster with kandi.

  • Use the support, quality, security, license, reuse scores and reviewed functions to confirm the fit for your project.
  • Use the, Q & A, Installation and Support guides to implement faster.

Discover Millions of Libraries and
Pre-built Use Cases on kandi