Next Steps
Once you have worked through the examples in this guide, try the following suggestions:
Learn About Replication
Data replication is sometimes called the "killer feature" of LDAP directories. Its strengths are in enabling very high availability for directory services even during network outages, and automatically resolving conflicts that can occur when the network is down, for example. LDAP directories have been improving and hardening replication features for decades.
Its weaknesses are that replication protocols have not been standardized for interoperability, and that unwary developers can misunderstand its property of eventual consistency if they are too used to the strong, immediate consistency of monolithic, transactional databases.
Replication necessarily involves multiple servers and additional configuration. You can learn more about it by reading Replication, and trying the examples in that chapter.
Browse DS Documentation
| Document | Topics Covered |
|---|---|
| DS features, fixes, and known issues | |
| Find your way in the updated documentation when coming from earlier DS versions | |
| Deploying Directory Services in on-premises and cloud environments | |
| Installing DS software | |
| Upgrading DS software | |
| Configuring DS servers after installation | |
| Ensuring a Directory Services deployment is secure | |
| Day-to-day operations for maintaining DS servers | |
| Configuring DS server logs | |
| What to monitor when running DS servers, and where to look for metrics and other information | |
| How to use LDAP features and command-line tools | |
| How to configure and use DS REST APIs for HTTP access | |
| The dsconfig subcommands and server configuration properties | |
| Evolving LDAP SDK and server APIs, including ForgeRock common APIs | |
| LDAP-specific features of DS software | |
| All default LDAP schema, including monitoring attributes and object classes | |
| DS server error log messages by category and ID | |
| Tools bundled with DS software |
Try Third-Party Tools
LDAP is a standard protocol, and so you can use LDAP-compliant third-party tools to manage directory data:
Many software solutions include support for LDAP authentication and LDAP-based address books.
ForgeRock does not endorse or support third-party tools.
Use DS With AM
Back End Directory Servers in the AM Deployment Planning Guide
Preparing External Stores in the AM Installation Guide
Configuring External CTS Token Stores in the AM Core Token Service Guide
You can install DS directory servers for use as external AM stores. For details, see Install DS for AM Configuration, Install DS for AM CTS, and Install DS for AM Identities.
Use DS With IDM
External DS Repository and Select a Repository in the IDM Installation Guide
Also see Install DS as an IDM Repository.
One Way Synchronization From LDAP to IDM, Two Way Synchronization Between LDAP and IDM, and other LDAP-related chapters in the IDM Samples Guide
DS Repository Configuration and Generic and Explicit Mappings With a DS Repository in the IDM Object Modeling Guide
Synchronizing Passwords With ForgeRock Directory Services (DS) in the IDM Password Synchronization Plugin Guide
Remove DS Software
For details, see "Uninstall .Zip".