Creating the default directory server instance

Edit online

Use the default instance creation option to create a directory server instance with the predefined instance name and the default settings.

Before you begin

To create a default instance, you must complete the following tasks:
  1. Install IBM® Security Verify Directory with the Server feature.
  2. Install DB2®.
  3. Verify whether the ldapdb.properties file contains DB2 installation path and version information. See Updating the ldapdb.properties file manually.

About this task

If your computer contains an existing directory server instance with the default instance name, then you cannot create the default directory server instance.

The default directory server instance contains the following settings, which you cannot change:

Table 1. The settings for a default directory server instance

The settings for a default directory server instance on various operating systems.
Settings Microsoft™ Windows™ AIX® and Linux™
Name dsrdbm01 dsrdbm01
Instance location c:\idsslapd-dsrdbm01 /home/dsrdbm01
Group name Administrators grrdbm01
Administrator DN cn=root cn=root
Database name dsrdbm01 dsrdbm01

The DB2 table space for the default directory server instance is automatic storage tablespaces. From DB2, Version 10.1 Fix Pack 1 onwards the database managed spaces (DMS) table space type and system managed spaces (SMS) table space type is deprecated for permanent table spaces that are defined by the user.

For the default directory server instance, Instance Administration Tool creates the o=sample suffix. You can add more suffixes later with Configuration Tool or the idscfgsuf command. For more information, see Suffix configuration.

Procedure

  1. Start Instance Administration Tool. See Starting Instance Administration Tool.
  2. Click Create an instance.
  3. On the Create new directory server instance window, complete the following steps:
    1. Click Create default instance.
    2. Click Next.
    3. In the User password field, enter a password for the user account who owns the directory server instance.
    4. In the Confirm password field, enter the password again for the user account who owns the directory server instance.
    5. In the Encryption seed field, enter an encryption seed for the directory server instance.
      Remember: You must remember the encryption seed of a directory server instance since it might be required for other configuration tasks.
      The encryption seed must contain only printable ISO-8859-1 ASCII characters with values in the range of 33 to 126. The encryption seed must contain a minimum of 12 and a maximum of 1016 characters. For information about the characters to use, see ASCII characters from 33 to 126. The directory server uses the encryption seed to generate a set of Advanced Encryption Standard (AES) secret key values. The key stash file of a directory server instance store the key values, and are used to encrypt and decrypt password and attributes.
    6. In the Confirm encryption seed field, enter the encryption seed for the directory server instance.
    7. In the Administrator DN password filed, enter a password for the directory server instance administrator.
    8. In the Confirm password filed, enter the password for the directory server instance administrator.
    9. Click Next .
    10. Verify the information about the default directory server instance. and
    11. To start creating the default directory server instance, click Finish.
      The Result window with the log information is displayed.
  4. Verify the log information is displayed in the Results window.
  5. To close the Results window, click Close.
  6. To close Instance Administration Tool, click Close.

Results

Instance Administration Tool creates the default directory server instance, dsrdbm01, on the computer.

What to do next

You must start the ibmslapd process and the administration server that is associated with the directory server instance. See Start or stop a directory server and an administration server.