Previous topic |
Next topic |
Contents |
Contact z/OS |
Library |
PDF
Setting up and running the LDAP server z/OS IBM Tivoli Directory Server Administration and Use for z/OS SC23-6788-00 |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
The LDAP server must be run as a started task. To do this, you must define the started task for the LDAP server and then you can run the LDAP server by using JCL. The LDAP server can be run in 31-bit mode or 64-bit mode. Defining the started task for the LDAP serverAfter you create the LDAPSRV user ID (described in Requirements for a user ID that runs the LDAP server), you must define the DSSRV started task. The examples and the sample startup procedure use the name DSSRV for this task, but you can use any name for it. To define the started task for the user ID you created, you can use the following RACF® commands.
Note: When using dsconfig to configure the LDAP server,
the started task is already defined.
Running the LDAP server using the sample JCLThe JCL needed to run the LDAP server as a started task is provided with the product as a procedure. This JCL can be found in the DSSRV member of GLDHLQ.SGLDSAMP on the system where the LDAP server is installed. If you have a ServerPac installation, GLDHLQ is GLD. Use DSSRV for starting the LDAP server in 31-bit or 64-bit mode. The JCL procedure can be started in the System Display and Search Facility (SDSF) or from the operator’s console, once the sample JCL has been placed into the installation-specific library for procedures. The JCL must be tailored before it can be run. In particular, you must change the program name to GLDSRV31 to run the LDAP server in 31-bit mode or GLDSRV64 to run in 64-bit mode. To start the LDAP server in SDSF, enter:
To start the LDAP server from the operator’s console, enter:
The LDAP server has the following optional command-line parameters. One or more of these might be specified when starting the LDAP server.
When the LDAP server has been started and is ready, the message
is displayed. Running the LDAP server using data sets contains information about using a data set for the LDAP server configuration file. In order to specify the configuration file as a data set name or a DD name in SDSF, some special syntax is necessary. In order to specify a full data set name, it might be necessary to be in the expanded input screen for SDSF. This is accomplished by entering a slash (/) in SDSF. On the expanded screen, it is then possible to specify a data set name for the configuration file. Assuming that the configuration file has been established in data set MYUSERID.DS.CONF, the start command for the LDAP server in expanded input SDSF or the console is:
or, if additional parameters are needed:
If a DD name, CONFIG, was established in the DSSRV procedure, as follows:
the LDAP server can be started from expanded input SDSF or the console by entering:
To stop the LDAP server in SDSF, enter:
To stop the LDAP server from the operator’s console, enter:
This command causes the LDAP server to shut down. LDAP server messages and debug outputThe LDAP server writes messages to stdout and stderr. Messages sent to stdout and stderr appear in DD:DSOUT in the provided JCL when running the LDAP server. DSOUT appears in the started task log for the LDAP server and can be viewed through SDSF. See z/OS SDSF Operation and Customization for information about how to use SDSF. Output from the LDAP server debug facility is directed to the file specified by the LDAP_DEBUG_FILENAME environment variable. If this environment variable is not set, the output is sent to stdout, which is redirected to DSOUT as explained above. Running the LDAP server using data setsNote: Using the LDAP configuration utility (dsconfig) to configure
your server creates all the necessary files in a partitioned data
set.
The LDAP server accepts several of its files as data sets. Data set versions of the configuration file and the environment variables file are not shipped with the LDAP server, but can be created by using the OGET command to copy the file system versions of the files into data sets. (See z/OS UNIX System Services Command Reference for information about the use of the OGET command.) The default data set characteristics for record format and record length (V 255) which OGET uses when creating a new data set are not acceptable for JCL when submitting for batch processing. In order to avoid this, allocate the MYUSER.DSNTIJCL sequential data set to be fixed block 80 before performing the OGET operation. A data set version of the DSNAOINI file needed for the TDBM and GDBM (when DB2-based) backends can be created by copying and editing the default file provided by DB2®. See step 4. The DSNAOINI file name can be specified in the dsnaoini option in the LDAP server configuration file, in a DSNAOINI DD statement in the DSSRV procedure, or in a DSNAOINI environment variable. The DD statement takes precedence, followed by the environment variable, and then the configuration option. Note: Be sure that use of sequence numbers is turned off when editing
this data set.
When the data set versions of these files are available, they can be specified in the DSSRV procedure. The configuration file can be specified by using the CONFIG DD statement, the environment variables file can be specified by using the ENVVAR DD statement, and the DSNAOINI file can be specified by using the DSNAOINI DD statement. |
Copyright IBM Corporation 1990, 2014
|