Attention: When you create a new directory server instance that is
not a copy of an existing directory server instance,
be aware of the information that follows. (If you create a directory
server instance as a copy of an existing directory server instance,
the two directory server instances are cryptographically synchronized
and you do not need to synchronize them.)
- If you want to use replication, use a distributed directory, or
import and export LDIF data between server instances, you must cryptographically
synchronize the server instances to obtain the best performance.
If
you are creating a directory server instance that must be cryptographically
synchronized with an existing directory server instance, you must
synchronize the server instances before you
do any of the following:
- Start the second server instance
- Run the idsbulkload command from the second
server instance
- Run the idsldif2db command from the second
server instance
See Appendix E. Synchronizing two-way cryptography between server instances for information about synchronizing
directory server instances.
- After you create a directory server instance and configure the
database, use the idsdbback utility to create
a backup of the directory server instance. The configuration and directory
key stash files are archived along with the associated configuration
and directory data. You can then use the idsdbrestore utility
to restore the key stash files if necessary. (You can also use the idsdbback utility after you load data into the database.
See Backing up the directory server instance for information about backing up the database.)