LDAP connection - LDAP suffixes

The "LDAP suffixes" panel is a part of the "LDAP connection" wizard.

Use this panel to specify the suffix for the msys for Setup management directory subtree and, if applicable, the security suffix for your RACF database.

Your LDAP administrator should be able to provide this information.

Steps for specifying the suffixes:

  1. Specify an LDAP suffix for the msys for Setup management directory subtree in the LDAP suffix entry field. You can:
    Note:
    If you specify the suffix for a nonexistent subtree, msys for Setup will prompt you to log on as the LDAP administrator to log on to create that subtree. Only an LDAP administrator can perform this task.

  2. If you do not want to use RACF to protect your management directory, ensure that the LDAP server uses RACF check box is cleared. Then click Finish and skip the remaining steps.
  3. If you want to use RACF to protect your management directory, select the LDAP server uses RACF check box.
  4. Accept the default selection or select the LDAP suffix for the RACF database from the Security suffix drop down list.

    msys for Setup detects all available backends and provides the corresponding suffixes in the drop down list. If the suffix you want to select is not in the list, consult your LDAP administrator.


  5. Click Finish.

Results:

If you have specified an existing management directory subtree, you proceed to the "Log on to Setup" panel where any user that is known to the specified management directory can log on.

If you have specified a new management directory subtree, you proceed to the LDAP administrator logon panel. The new subtree is created only if the LDAP administrator logs on successfully.

Fields

Push buttons: