Managing multiple trees
Novell Cool Solutions: Question & Answer
Reader Rating 
Q:
We want to manage two trees, one with AD and one with NetWare, using Identity Manager. In eDirectory we are planning to move all users and groups to 1 context with 5000-10000 objects and replicate (RW) it to over 30 servers.
Is this a good idea or not? How much DS traffic will get generated by eDirectory?
A:
I would recommend setting up a separate eDirectory tree independent from your current production tree to act as your Identity Vault and host the IDM2 DirXML engine. Use the eDir to AD and the eDir to eDir drivers to connect the systems to the Identity Vault tree that will provide the synchronization between the two directories.
You can make your Identity Vault tree flat, or you can configure it to mirror your current production tree. The advantage of setting up a separate tree as an Identity Vault that acts as the central identity repository is that you will not have to change your current replication design and add overhead to the amount of replication traffic. Also, you won't impact the performance of the Identity Vault tree with additional schema extensions and replication traffic.
Novell Cool Solutions (corporate web communities) are produced by WebWise Solutions. www.webwiseone.com