Warning Livedoc is no longer being updated and will be deprecated shortly. Please refer to https://documentation.tjhsst.edu.


Jump to: navigation, search

Sun Java System Directory Server

321 bytes added, 15:44, 27 July 2009
Other pending tasks: note about private SSL cert
===Other pending tasks===
If I2 switches to Sun DS, the following decisions tasks remain to be made:
*Determine whether we will use multi-master (r/w) replication or read-only replication.
*Modify Intranet code slightly to handle multiple LDAP hosts (it might be able to do it already). Capability of PHP described in the second-to-last comment (as of 8/10/2007) on: http://www.php.net/manual/en/function.ldap-connect.php (Thanks Deason!)
*Decide whether or not to use ISW (Identity Synchronization for Windows). It offers attribute synchronization with AD, among other things, but the software is currently (as of 7/21/2009) pretty old and sometimes a bit buggy. Also, name changes occur infrequently enough that it would only provide limited benefits.
*If we want encryption, consider getting a non-wildcard SSL certificate. My understanding is anyone with the SSL certificate can decrypt the database. If the goal is to use encryption to protect student private data from student sysadmins, then we probably want to restrict access to the SSL certificate used to protect the database.

Navigation menu