Chapter 3. Setting up a new instance using the web console

Procedure

1. List the available subscriptions in your Red Hat account that provide a Red Hat Directory Server subscription, and note the pool ID:

   # subscription-manager list --all --available --matches 'Red Hat Directory Server'
   ...
   Subscription Name:   Example Subscription
   Provides:            ...
                        Red Hat Directory Server
                        ...
   Pool ID:             5ab6a8df96b03fd30aba9a9c58da57a1
   Available:           1
   ...

2. Attach the Red Hat Directory Server subscription to the system using the its pool ID:

   # subscription-manager attach --pool=5ab6a8df96b03fd30aba9a9c58da57a1
   Successfully attached a subscription for: Example Subscription

3. Enable the dirsrv-12-for-rhel-9-x86_64-rpms repository:

   # subscription-manager repos --enable=dirsrv-12-for-rhel-9-x86_64-rpms
   Repository 'dirsrv-12-for-rhel-9-x86_64-rpms' is enabled for this system.

4. Install the redhat-ds:12 module:

   # dnf module install redhat-ds:12

   This command automatically installs all required dependencies.

Procedure

1. Use a browser to connect to the web console running on port 9090 on the Directory Server host:

   https://server.example.com:9090

2. Log in as the root user or as a user with sudo privileges.
3. Select the Red Hat Directory Server entry.

4. Create a new instance:

   • If no instance exists on the server, click the Create New Instance button.
   • If the server already runs existing instances, select Actions and click Create New Instance.

5. Complete the fields of the Create New Server Instance form:

   • Instance Name: Sets the name of the instance. Note that you cannot change the name of an instance after it has been created.
   • Port: Sets the port number of the LDAP protocol. The port must not be in use by another instance or service. The default port is 389.
   • Secure Port: Sets the port number of the LDAPS protocol. The port must not be in use by another instance or service. The default port is 636.

   • Create Self-Signed TLS Certificate DB: Enables TLS encryption in the instance, and creates a self-signed certificate.

     For increased security, Red Hat recommends that you create the new instance with the self-signed certificate and TLS enabled. Note that you can replace the self-signed certificate with a certificate issued by a Certificate Authority (CA) at a later date.

   • Directory Manager DN: Sets the distinguished name (DN) of the administrative user of the instance. The default value is cn=Directory Manager.
   • Directory Manager Password: Sets the password of the administrative user of the instance.
   • Confirm Password: Must be set to the same value as in the Directory Manager Password field.

   • Create Database: Select this field to automatically create a suffix during instance creation.

     Important

     If you do not create a suffix during instance creation, you must create it later manually before you can store data in this instance.

     If you enabled this option, fill the addition fields:

     • Database Suffix: Sets the suffix for the back end.
     • Database Name: Sets the name of the back end database.
     • Database Initialization: Set this field to Create Suffix Entry.

6. Click Create Instance.

   The new instance starts and is configured to start automatically when the system boots.

7. Open the required ports in the firewall:

   # firewall-cmd --permanent --add-port={389/tcp,636/tcp}

8. Reload the firewall configuration:

   # firewall-cmd --reload