Domino server and openLDAP

Posted on 2005-04-12
Last Modified: 2013-12-18
I'm trying to figure out how i can use my Domino LDAP server (Slave) to use openLDAP (Master). I'm running the server on Suse 9.3.
I was thinking to write shell scripts to transfer the files from domino to openLDAP.. would this work? if yes, where should i look in domino server?
Question by:vipa2k
    LVL 46

    Expert Comment

    by:Sjef Bosman
    Found these for you: (if you can read French...)

    Anyway, you could put a question on the forum for the same.

    And there is this document about OpenLDAP:
    LVL 31

    Accepted Solution

    Most Master/Salve systems I've seen don't rely on the time-based queries or deltas available in teh slave.  Instead, a sync process pulls the full slave directory, and compares it to teh previous pull, producing a delta of adds/changes/deletes to feed to the master... and then does a similar process in reverse (but for each slave, excluding the slave's own content from the delta).

    So, this seems to be in line with your shell script idea.  Of course, you have to do some sort of schema mapping between teh directories in your scripts, but otheriwse, this should be fairly simple -- use an query library to get a full LDIF dump of Domino, sort, compare, done.

    A few tricky things to watch out for in Domino.  Often, many aliases coexist in a single object, where in most LDAP directories, each alias would be a separate node, pointing to the "main" object.  This can be particularly unsettling when a user is renamed (the classic maiden/married name situation), where the old name exists in teh same record as the new name, in the same Domino field, as an alias.

    Domino also typically uses its full text indexing capabilitioes to do a coarse search for your query, then takes teh matching data and further filters it for exact match... partially because of the sort of aliasing I mentioned, which can fool the full text search mechanism into returning records you don't want that then have to be culled out at a finer level of examination.  One problem with full text searhc is that the index itself can get out of date or corrupt, and I've never been able to ascertain whether the LDAP query mechanism in Domino makes sure that there are no such problems.
    LVL 31

    Expert Comment

    So, do you ahve a suvvessful implementation?

    Featured Post

    Do You Know the 4 Main Threat Actor Types?

    Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

    Join & Write a Comment

    Problem "Can you help me recover my changes?  I double-clicked the attachment, made changes, and then hit Save before closing it.  But when I try to re-open it, my changes are missing!"    Solution This solution opens the Outlook Secure Temp Fold…
    IBM Notes offer Encryption feature using which the user can secure its NSF emails or entire database easily. In this section we will discuss about the process to Encrypt Incoming and Outgoing Mails in depth.
    Illustrator's Shape Builder tool will let you combine shapes visually and interactively. This video shows the Mac version, but the tool works the same way in Windows. To follow along with this video, you can draw your own shapes or download the file…
    This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…

    729 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    20 Experts available now in Live!

    Get 1:1 Help Now