1.先停止samldap实例 (ISVD 10.0.3)
$ sudo /opt/ibm/ldap/V10.0.3/sbin/ibmslapd -I samldap -k
GLPWRP123I The program ‘/opt/ibm/ldap/V10.0.3/sbin/64/ibmslapd’ is used with the following arguments ‘-I samldap -k’.
GLPSRV176I Terminated directory server instance ‘samldap’ normally.
2. 清理samldap数据库 (ISVD 10.0.3)
$ sudo idsucfgdb -I samldap -r
GLPUDB016I You have opted to delete the database for directory server instance. The database and data contained in the dir
ectory server instance will be removed. This means you will lose all data currently stored in the database.
Do you want to ….
(1) – Continue and delete the database, or
(2) – Exit this task without changes:1
GLPWRP123I The program ‘/opt/ibm/ldap/V10.0.3/sbin/64/idsucfgdb’ is used with the following arguments ‘-I samldap -r’.
You have chosen to perform the following actions:
GLPUDB017I The database for directory server instance ‘samldap’ will be unconfigured.
GLPUDB019I Database will be completely removed.
Do you want to ….
(1) Continue with the above actions, or
(2) Exit without making any changes:1
GLPUDB002I Removing the DB2 database from directory server instance: ‘samldap’.
GLPCTL008I Starting database manager for database instance: ‘samldap’.
GLPCTL009I Started database manager for database instance: ‘samldap’.
GLPCTL040I Removing local loopback from database: ‘1dapdb2b’.
GLPCTL041I Removed local loopback from database: ‘1dapdb2b’.
GLPUDB005I Unconfiguring database ‘samldap’ for directory server instance: ‘samldap’.
GLPUDB006I Unconfigured database ‘samldap’ for directory server instance: ‘samldap’.
GLPCTL031I Removing database: ‘samldap’.
GLPCTL032I Removed database: ‘samldap’.
GLPCTL011I Stopping database manager for the database instance: ‘samldap’.
GLPCTL012I Stopped database manager for the database instance: ‘samldap’.
GLPUDB003I Removed the DB2 database from directory server instance: ‘samldap’.
3. 导出SAMLDAP的数据 LDIF (SDS 6.4)
bash-4.2$ sudo /opt/ibm/ldap/V6.4/sbin/idsdb2ldif -I samldap -o /tmp/samldap-data-no.ldif
GLPCTL113I Largest core file size creation limit for the process (in bytes) : ‘0’ (Soft limit) and ‘0’ (Hard limit) .
GLPCTL119I Maximum Data Segment (Kbytes) soft ulimit for the process is -1 and the prescribed minimum is 262144.
GLPCTL119I Maximum File Size (512 bytes block) soft ulimit for the process is -1 and the prescribed minimum is 2097152.
GLPCTL121I Maximum Open Files soft ulimit for the process was 1024 and it is modified to the prescribed minimum 4096.
GLPCTL121I Maximum Stack Size (Kbytes) soft ulimit for the process was 8192 and it is modified to the prescribed minimum
GLPCTL119I Maximum Virtual Memory (Kbytes) soft ulimit for the process is -1 and the prescribed minimum is -1.
GLPSRV221I Replication of security attributes feature is disabled.
GLPSRV200I Initializing primary database and its connections
GLPD2L011I 100 entries have been successfully exported from the directory.
GLPD2L011I 200 entries have been successfully exported from the directory.
GLPD2L011I 300 entries have been successfully exported from the directory.
GLPD2L011I 400 entries have been successfully exported from the directory.
…
GLPD2L011I 16900 entries have been successfully exported from the directory.
GLPD2L011I 16956 entries have been successfully exported from the directory.
4. 拷贝所有的V3到指定的路径 (ISVD 10.0.3)
sudo find /opt/samldap/idsslapd-samldap/etc/ -name ‘V3*’ -exec cp {} /opt/sam2025/idsslapd-sam2025/etc/ \;
sudo bash -c ‘for file in /opt/samldap/idsslapd-samldap/etc/V3*; do [ -f “$file” ] && (md5sum “$file”; ls -l “$file”); done’
52c7afa3afa27e2b778ddf76f1023736 /opt/samldap/idsslapd-samldap/etc/V3.config.at
-rw-rw—-. 1 samldap idsldap 112924 Jan 27 10:30 /opt/samldap/idsslapd-samldap/etc/V3.config.at
22ba451209b2ca0702543da331ebd6bc /opt/samldap/idsslapd-samldap/etc/V3.config.oc
-rw-rw—-. 1 samldap idsldap 18012 Jan 27 10:30 /opt/samldap/idsslapd-samldap/etc/V3.config.oc
5e113f885de47178f2699d7f021af944 /opt/samldap/idsslapd-samldap/etc/V3.ibm.at
-rw-rw—-. 1 samldap idsldap 391430 Jan 27 10:30 /opt/samldap/idsslapd-samldap/etc/V3.ibm.at
7f886e2d06d98e89b17a6c60c9e45d96 /opt/samldap/idsslapd-samldap/etc/V3.ibm.oc
-rw-rw—-. 1 samldap idsldap 72442 Jan 27 10:30 /opt/samldap/idsslapd-samldap/etc/V3.ibm.oc
2f366e9aff8110e0874d2ed1631bcc2a /opt/samldap/idsslapd-samldap/etc/V3.ldapsyntaxes
-rw-rw—-. 1 samldap idsldap 3425 Jan 27 10:30 /opt/samldap/idsslapd-samldap/etc/V3.ldapsyntaxes
4dd9ede577c70c2018acfd199651f7d7 /opt/samldap/idsslapd-samldap/etc/V3.matchingrules
-rw-rw—-. 1 samldap idsldap 3262 Jan 27 10:30 /opt/samldap/idsslapd-samldap/etc/V3.matchingrules
9383692283aeeb0694d0e2407e9c1ce4 /opt/samldap/idsslapd-samldap/etc/V3.modifiedschema
-rw-rw—-. 1 samldap idsldap 42628 Jan 27 10:30 /opt/samldap/idsslapd-samldap/etc/V3.modifiedschema
b2567287880dbc2365a3fc5e781651ec /opt/samldap/idsslapd-samldap/etc/V3.system.at
-rw-rw—-. 1 samldap idsldap 69507 Jan 27 10:30 /opt/samldap/idsslapd-samldap/etc/V3.system.at
3771aafc220c4f880e8b71552952782d /opt/samldap/idsslapd-samldap/etc/V3.system.oc
-rw-rw—-. 1 samldap idsldap 10467 Jan 27 10:30 /opt/samldap/idsslapd-samldap/etc/V3.system.oc
9d1b82feac62d3907a2221de0a4b2a11 /opt/samldap/idsslapd-samldap/etc/V3.user.at
-rw-rw—-. 1 samldap idsldap 117780 Jan 27 10:30 /opt/samldap/idsslapd-samldap/etc/V3.user.at
0953cca3de39b990771e6243d7e1092c /opt/samldap/idsslapd-samldap/etc/V3.user.oc
-rw-rw—-. 1 samldap idsldap 31720 Jan 27 10:30 /opt/samldap/idsslapd-samldap/etc/V3.user.oc
5. 导入LDIF到SAMLDAP (ISVD 10.0.3)
$ sudo idsldif2db -I samldap -i /tmp/samldap-data-no.ldif
GLPWRP123I The program ‘/opt/ibm/ldap/V10.0.3/sbin/64/ldif2db’ is used with the following arguments ‘-I samldap -i /tmp/sa
mldap-data-no.ldif’.
GLPCTL113I Largest core file size creation limit for the process (in bytes) : ‘0’ (Soft limit) and ‘0’ (Hard limit) .
GLPCTL119I Maximum Data Segment (Kbytes) soft ulimit for the process is -1 and the prescribed minimum is 262144.
GLPCTL119I Maximum File Size (512 bytes block) soft ulimit for the process is -1 and the prescribed minimum is 2097152.
GLPCTL122I Maximum Open Files soft ulimit for the process is 65535 and the prescribed minimum is 500.
GLPCTL121I Maximum Stack Size (Kbytes) soft ulimit for the process was 8192 and it is modified to the prescribed minimum -1
GLPCTL119I Maximum Virtual Memory (Kbytes) soft ulimit for the process is -1 and the prescribed minimum is -1.
GLPCOM022I The database plugin is successfully loaded from libback-config.so.
GLPSRV221I Replication of security attributes feature is disabled.
GLPSRV200I Initializing primary database and its connections.
GLPRPL137I Restricted Access to the replication topology is set to false.
GLPRDB052E Entry CN=IBMPOLICIES already exists.
GLPRDB052E Entry IBM-REPLICAGROUP=DEFAULT, CN=IBMPOLICIES already exists.
GLPRDB052E Entry globalGroupName=GlobalAdminGroup, cn=ibmpolicies already exists.
GLPRDB052E Entry cn=pwdpolicy, cn=ibmpolicies already exists.
GLPRDB052E Entry CN=REPLICATION, CN=IBMPOLICIES already exists.
GLPRDB052E Entry o=vgc, c=com already exists.
GLPL2D003I ldif2db: 100 entries have been processed.
GLPL2D003I ldif2db: 200 entries have been processed.
GLPL2D003I ldif2db: 300 entries have been processed.
…
GLPL2D003I ldif2db: 16800 entries have been processed.
GLPL2D003I ldif2db: 16900 entries have been processed.
GLPRDB002W 1dif2db: 16916 entries have been successfully added out of 16956 attempted.
GLPRDB149I After loading data using idsbulkload or idsldif2db tools it is recommended to run runstats utility.
6. 对数据库实例进行维护
$ sudo /opt/ibm/ldap/V10.0.3/sbin/idsdbmaint -I samldap -i
GLPWRP123I The program ‘/opt/ibm/ldap/V10.0.3/sbin/64/dbmaint’ is used with the following arguments ‘-I samldap -i’.
GLPCTL113I Largest core file size creation limit for the process (in bytes) : ‘0’ (Soft limit) and ‘0’ (Hard limit) .
GLPCTL119I Maximum Data Segment (Kbytes) soft ulimit for the process is -1 and the prescribed minimum is 262144.
GLPCTL119I Maximum File Size (512 bytes block) soft ulimit for the process is -1 and the prescribed minimum is 2097152.
GLPCTL122I Maximum Open Files soft ulimit for the process is 65535 and the prescribed minimum is 500.
GLPCTL121I Maximum Stack Size (Kbytes) soft ulimit for the process was 8192 and it is modified to the prescribed minimum -1
GLPCTL119I Maximum Virtual Memory (Kbytes) soft ulimit for the process is -1 and the prescribed minimum is -1.
GLPSRV221I Replication of security attributes feature is disabled.
GLPSRV200I Initializing primary database and its connections.
GLPDBA036I Index reorganization task will be performed.
idsdbmaint: : dbListTables: DBXSetStmtAttr CURSOR HOLD is ON
GLPDBA021I All Index on table ‘ACLINHERIT’ will be reorganized.
GLPDBA044I The table ‘ACLINHERIT’ has been reorganized.
GLPDBA046I All statistics on table ‘DB2INST1.ACLINHERIT’ have been updated.
GLPDBA021I All Index on table ‘ACLPERM’ will be reorganized.
GLPDBA044I The table ‘ACLPERM’ has been reorganized.
GLPDBA046I All statistics on table ‘DB2INST1.ACLPERM’ have been updated.
GLPDBA021I All Index on table ‘ACLPROP’ will be reorganized.
GLPDBA044I The table ‘ACLPROP’ has been reorganized.
GLPDBA046I All statistics on table ‘DB2INST1.ACLPROP’ have been updated.
GLPDBA021I All Index on table ‘ALIASEDOBJECT’ will be reorganized.
GLPDBA044I The table ‘ALIASEDOBJECT’ has been reorganized.
…
GLPDBA021I All Index on table ‘TIMEEXPIRELOCKOUT’ will be reorganized.
GLPDBA044I The table ‘TIMEEXPIRELOCKOUT’ has been reorganized.
GLPDBA046I All statistics on table ‘DB2INST1. TIMEEXPIRELOCKOUT’ have been updated.
GLPDBA021I All Index on table ‘TITLE’ will be reorganized.
GLPDBA044I The table ‘TITLE’ has been reorganized.
GLPDBA046I All statistics on table ‘DB2INST1.TITLE’ have been updated.
GLPDBA021I All Index on table ‘UID’ will be reorganized.
GLPDBA044I The table ‘UID’ has been reorganized.
GLPDBA046I All statistics on table ‘DB2INST1.UID’ have been updated.
GLPDBA021I All Index on table ‘UNIQUEIDENTIFIER’ will be reorganized.
GLPDBA044I The table ‘UNIQUEIDENTIFIER’ has been reorganized.
GLPDBA046I All statistics on table ‘DB2INST1. UNIQUEIDENTIFIER’ have been updated.
GLPDBA021I All Index on table ‘UNIQUEMEMBER’ will be reorganized.
GLPDBA044I The table ‘UNIQUEMEMBER’ has been reorganized.
GLPDBA046I All statistics on table ‘DB2INST1. UNIQUEMEMBER’ have been updated.
GLPDBA021I All Index on table ‘UPN’ will be reorganized.
GLPDBA044I The table ‘UPN’ has been reorganized.
GLPDBA046I All statistics on table ‘DB2INST1. UPN’ have been updated.
GLPDBA021I All Index on table ‘USERPASSWORD’ will be reorganized.
GLPDBA044I The table ‘USERPASSWORD’ has been reorganized.
GLPDBA046I All statistics on table ‘DB2INST1. USERPASSWORD’ have been updated.
GLPDBA021I All Index on table ‘VERSION’ will be reorganized.
GLPDBA044I The table ‘VERSION’ has been reorganized.
GLPDBA046I All statistics on table ‘DB2INST1. VERSION’ have been updated.
GLPDBA021I All Index on table ‘WORKLOCATION’ will be reorganized.
GLPDBA044I The table ‘WORKLOCATION’ has been reorganized.
GLPDBA046I All statistics on table ‘DB2INST1. WORKLOCATION’ have been updated.
GLPDBA027I Index reorganization task is complete.