sfidirector init

Initialize or update the repository. More...

Initialize or update the repository.

Setup an OpenLDAP based Director instance.

Create cryptographic keys.

Initialize/Update repository

SYNOPSIS

sfidirector init [-n] [-a] [-r] [-e] [-l] [-F] [-u] [-t] [package1 ...]

DESCRIPTION

The init command installs and maintains structures in the configuration repository, such as the folder frame, default/example objects and more.

Options

-n

Dry-run. Do not really update the repository, just log/print what would have been done without -n. .

-l

List available/installed packages.

-t

Attempt to find out which packages are already installed in the repository. This option is mainly useful when upgradeing from the old init procedure to the new one.

-F

Flush. Removes the information stored internally about already installed package versions. This option is useful after changing the database in sfidirector.conf to a new, empty database.

Package Selection Options

The following options tell the init command what packages it should be consider installing/updateing.

-u

Upgrade all packages that are already installed.

-a

Install/upgrade all available packages.

-r

Install/upgrade all recommended packages.

-e

Install/upgrade all packages that contain example records.

Create cryptographic keys

SYNOPSIS

sfidirector keyinit [-s] [-f]

DESCRIPTION

The keyinit command creates cryptographic keys:

• SSL keys for agent/server communication (usually CONFIGDIR/ssl, SSL* configuration options in sfidirector.conf Main Configuration)

Options

-f

force. Overwrite existing keys.

-s

Create SSL keys for server/agent communication.

-p

Create key pair for password safe

-w password

specify private key password

Setup an OpenLDAP based Director instance

SYNOPSIS

sfidirector olinstall schema (all|[name [...]])
sfidirector olinstall createdb base-DN dir (y|n) [rootpw] [domain]
sfidirector olinstall deletedb base-DN

DESCRIPTION

The olinstall command installs and maintains configuration, databases and schema for an OpenLDAP based Director instance. Presumptions:

• OpenLDAP is installed and running, the cn=config configuration schema is in operation
• cn=config is accessible by the root user via LDAPI and external authentication

sfidirector olinstall schema (all|[name [...]])

Imports/updates all or the named schema into the OpenLDAP schema store

sfidirector olinstall createdb baseDN directory anonymousaccess(y|n) [rootpw] [domain

Create a database with given base DN, store the data in directory, include anonymous read access in the permission settings (yes/no), create a root user with rootpw, an ldaproot user with a random passwort, store the ldaproot credentials in .director/credentials[.domain].

sfidirector olinstall randompassword basedn domain

Set a random password for the ldaproot user in the given database.

Options