Query:- How to do referral with two different dsa in opendj 2.6.1

Tagged: ,

This topic has 2 replies, 2 voices, and was last updated 7 years, 4 months ago by ashishjaiswal.

  • Author
  • #3794

    Hi All,

    Is it possible to set referral between two directories in Opendj . For eg. active directory we can set referral between two domains (domain1.com and domain2.com).

    for eg. if domain1 acquire domain2 and both are using opendj , is it possible to create cross reference so that client application can search users in domain2 using referral.



    You can set a referral object on server one that points to the server2 and vice-versa on server 2 that points to server 1.
    A referral is usually expressed as a container.

    On Server one, you can create the following entry

    dn: ou=Domain2People,dc=example,dc=com
    objectClass: extensibleObject
    add: ref
    ref: ldap://opendj2.example.com:1389/ou=People,dc=example,dc=com

    On Server two, you can create the following entry

    dn: ou=Domain1People,dc=example,dc=com
    objectClass: extensibleObject
    add: ref
    ref: ldap://opendj1.example.com:1389/ou=People,dc=example,dc=com

    These referrals will work when searching from “dc=example,dc=com”
    If they need to work when searching from “ou=people,dc=example,dc=com”,
    you should create the entries as dn: ou=Domain1People,ou=people,dc=example,dc=com


    thanks, we are able to set referral. And our application is able to search users between two dsa.

Viewing 3 posts - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?