The
es-ldap-setup script defines the LDAP object classes and containers (the schema) that will hold ES data. That is, it configures AD LDS or AD so that you can use it with Enterprise Server.
By default, the script is installed by default into the
%ProgramFiles(x86)%\Micro Focus\Enterprise Developer\bin directory.
You can run
es-ldap-setup with no parameters to configure the default settings. When you run the script, check that it generates no errors.
Without parameters, the script displays the default it will set, and prompts you for information if you do not want to accept the default. Press
Enter to accept the default values unless you need to specify something else.
These are the actions
es-ldap-setup performs:
- Prompts for values such as username if they are not specified on the command line. Press
Enter to accept the default, or supply a different value.
- If AD LDS or AD is not configured to allow password operations over unsecured connections, the script will configure it to allow them. This is required by some of the following actions. If the script changes this option on the server, it will reset it to its old value before exiting.
- Adds the ES user, group, and resource LDAP class definitions to the schema. These specify what attributes each of these types of object has.
- Adds the container objects for ES to the repository.
- Creates MFReader, the default LDAP user account for ES.
- Creates the administrative LDAP user for adding MSS users. (This step is skipped if the
/AD option is specified.)
- Imports MSS users that are defined in the default MSS resource definition file into the LDAP repository.
- Imports MFDS users and groups into the LDAP repository.
- Imports the default MSS resource access control definitions into the LDAP repository.