I have an old directory server running Sun One Java System Directory Service. Yesterday I created top dcobject - dc=christianbook,dc=com, however, I don't know what the best way is to import data from my old Sun Directory Server to 389 Directory Server. It appears the object structure is different. Below is an example of my old dcobject:
dn: dc=christianbook,dc=com aci: (target ="ldap:///dc=christianbook,dc=com")(targetattr !="userPassword")(version 3.0;acl "Anonymous read-search access";allow (read, search, compare)(userdn = "ldap:///anyone");) aci: (target="ldap:///dc=christianbook,dc=com") (targetattr = "*")(version 3.0; acl "allow all Admin group"; allow(all) groupdn = "ldap:///cn=Directory Administrators,ou=Groups,dc=christianbook,dc=com";) aci: (targetattr = "cn||uid||uidNumber||gidNumber||homeDirectory||shadowLastChange||shadowMin||shadowMax||shadowWarning||shadowInactive||shadowExpire||shadowFlag||memberUid")(version 3.0; acl LDAP_Naming_Services_deny_write_access; deny (write) userdn = "ldap:///self";) aci: (target="ldap:///dc=christianbook,dc=com")(targetattr="userPassword")(version 3.0; acl LDAP_Naming_Services_proxy_password_read; allow (compare,search) userdn = "ldap:///cn=proxyagent,ou=profile,dc=christianbook,dc=com";) dc: christianbook nisdomain: christianbook.com objectclass: top objectclass: nisDomainObject objectclass: domain
This is another object in my old Sun Directory Server:
dn: ou=people,dc=christianbook,dc=com objectclass: top objectclass: organizationalUnit ou: people
What is the best way to convert or import from my old Sun Directory Server to new one?
On Wed, 2016-03-30 at 15:54 +0000, xinhuan zheng wrote:
I have an old directory server running Sun One Java System Directory Service. Yesterday I created top dcobject - dc=christianbook,dc=com, however, I don't know what the best way is to import data from my old Sun Directory Server to 389 Directory Server. It appears the object structure is different. Below is an example of my old dcobject:
dn: dc=christianbook,dc=com aci: (target ="ldap:///dc=christianbook,dc=com")(targetattr !="userPassword")(version 3.0;acl "Anonymous read-search access";allow (read, search, compare)(userdn = "ldap:///anyone");) aci: (target="ldap:///dc=christianbook,dc=com") (targetattr = "*")(version 3.0; acl "allow all Admin group"; allow(all) groupdn = "ldap:///cn=Directory Administrators,ou=Groups,dc=christianbook,dc=com";) aci: (targetattr = "cn||uid||uidNumber||gidNumber||homeDirectory||shadowLastChange||shadowMin||sha dowMax||shadowWarning||shadowInactive||shadowExpire||shadowFlag||memberUid")(ve rsion 3.0; acl LDAP_Naming_Services_deny_write_access; deny (write) userdn = "ldap:///self";) aci: (target="ldap:///dc=christianbook,dc=com")(targetattr="userPassword")(version 3.0; acl LDAP_Naming_Services_proxy_password_read; allow (compare,search) userdn = "ldap:///cn=proxyagent,ou=profile,dc=christianbook,dc=com";) dc: christianbook nisdomain: christianbook.com objectclass: top objectclass: nisDomainObject objectclass: domain
This is another object in my old Sun Directory Server:
dn: ou=people,dc=christianbook,dc=com objectclass: top objectclass: organizationalUnit ou: people
What is the best way to convert or import from my old Sun Directory Server to new one?
db2ldif on the sun ds, and ldif2db on the rhds
Alternately, I believe you can do replication between them.
The hardest part will be checking the schema between the two, and potentially needing to alter or correct data.
389-users@lists.fedoraproject.org