11.1 Planning the Installation

Before you install the Novell DNS service, review the following:

11.1.1 Prerequisites

  • iManager 2.7

  • The DNS schema is extended for the specified LDAP host.

IMPORTANT:Do not install any of the following service combinations on the same server as Novell DNS. Although not all of the combinations cause pattern conflict warnings, Novell does not support any of the combinations shown.

  • DHCP and DNS server

  • Xen Virtual Machine Host Server

11.1.2 eDirectory Permissions

First-Time Installation on an eDirectory Tree

If you are installing OES 2 SP3 Linux DNS Server on an eDirectory tree for the first time, you need to have the following create permissions for the Server, Locator, Group, RootServerInfo, and NCP Server containers at the eDirectory level before you start the DNS installation:

  • Create permission at the entry level of the container for the following:

    • DNS Server Object Container

    • Locator Object Container (DNS-DHCP)

    • Group Object Container (DNSDHCP-Group)

    • DNS Proxy User Object Container

  • Read and Write permissions for the NCP Server Objects for DNS Server object creation.

  • Write permission at the root of the tree for extending the DNS schema.

For example: If the container for Server object is ou=Server,o=acme, the container for the Locator object, Group object, Proxy User, RootServerInfo object and for the NCP Server object is o=acme1, then the user should have create permissions at the entry level on o=acme and o=acme1.

Installing on an eDirectory Tree where one or more DNS Servers already exists (In the Same or Separate Container)

If you are installing OES 2 SP3 Linux DNS Server on an eDirectory tree make sure that you have the following permissions:

  • Create permission at the entry level of the container for the following objects:

    • DNS Server Object Container

    • Proxy User Object Container

  • Read and Write permissions for the existing objects at the attribute level of the objects.

    • Group Object

    • Locator Object

    • NCP Server Object

  • Create permission at the entry level of the RootServerInfo objects.

  • To retrieve the existing Locator and RootServer Info object context, specify the following rights:

    Read and compare rights at the attribute level and browse rights at the entry level of the container where NCP server, DNS Locator and Group, and RootServer Info objects are present.

Table 11-1 Permissions as mentioned above

DNS Objects and Attributes

Permissions

DNS-DHCP (Locator object)

Read, Write

DNSDHCP-Group (Group object)

Read, Write

RootServerInfo object

Create

NCP Server object

Read, Write

DNS Server object

Create rights at the entry level of the DNS Server object container

Proxy User

Create rights at the entry level of the proxy user container