Administering Directory Server

Use this information to manage the Directory Server.

To administer the Directory Server, the user profile you are using must have the following authority:

• To configure the server or change the server configuration: All Object (*ALLOBJ) and I/O System Configuration (*IOSYSCFG) special authorities
• To start or stop the server: Job Control (*JOBCTL) authority and object authority to the End TCP/IP (ENDTCP), Start TCP/IP (STRTCP), Start TCP/IP Server (STRTCPSVR), and End TCP/IP Server (ENDTCPSVR) commands
• To set auditing behavior for the directory server: Audit (*AUDIT) special authority
• To view the server job log: Spool Control (*SPLCTL) special authority

To manage directory objects (including access control lists, object ownership, and replicas), connect to the directory with either the administrator DN or another DN that has the proper LDAP authority. If authority integration is being used, an administrator can also be a projected user (see Operating system projected backend) that has authority to the Directory Server Administrator function ID. Most administrative tasks can also be performed by users in the administrative group (see Administrative access).