Appendix D. Setting up users and groups: directory server instance owner, database instance owner, and database owner

When you create a directory server instance, a user ID on the operating system must exist for the directory server instance owner. For a full directory server, there must also be user IDs on the operating system for the owners of the database instance and the database. You can use the same user ID for all three roles; if you do this, the directory server instance, the database instance, and the database owner all have the same name.

If you use the Instance Administration Tool to create a directory server instance, you can create the directory server instance owner user ID through the tool. If you use the command line to create the directory server instance, you can use the idsadduser command to create the directory server instance owner user ID. This command creates a user ID that meets all requirements.

Use the following information to understand the directory server instance owner, database instance owner, and database owner roles before you create the user ID or IDs.

The roles are defined as follows:

Directory server instance owner

You must have a user ID for the owner of the directory server instance. The user ID for the directory server instance owner is also the name of the directory server instance. This user has the authority to manage the directory server instance.

On Windows systems, a member of the Administrators group also has the authority to manage the directory server instance.

On AIX®, Linux, and Solaris systems, the primary group of the directory server instance owner also has the authority to manage the directory server instance.

Note:

On AIX, Linux, and Solaris systems, these names are case-sensitive. You must always specify the directory server instance name and owner exactly as the user ID is specified. For example, JoeSmith and joesmith are different names.

Database instance owner

This user ID owns the database instance that is configured to be used by the directory server instance. The database instance name and the database instance owner name are the same. This user manages the database instance. The directory server instance owner can also manage the database instance. By default, this user ID is the same as the directory server instance owner ID.

Database owner

This user ID owns the database that is used by the directory server instance to store the directory data. The database resides in the database instance owned by the database instance owner. The directory server instance uses this user ID and its password to connect to the database.

[ Top of Page | Previous Page | Next Page ]