Fact-checked by Grok 2 weeks ago

NetIQ eDirectory

NetIQ eDirectory is a high-end, scalable that provides centralized and secure for users, devices, and resources across networks. Originally developed by as NetWare Directory Services (NDS) and introduced with 4.0 in 1993 to replace the flat bindery system with a hierarchical, object-oriented database, it evolved into NDS eDirectory in late 1999 (later simply eDirectory), emphasizing cross-platform compatibility and LDAP v3 standards compliance. Following 's acquisition by Attachmate (owner of ) in 2011 and subsequent ownership changes—including acquisition by in 2014 and in 2023, with the latest version 9.3 released in 2024—it is now known as eDirectory (), continuing to serve as a foundational component for large-scale deployments. The service supports billions of without performance degradation, offering features like distributed replication, partitioning for , and fine-grained lists (ACLs) to ensure data consistency and security. It complies with and LDAP v3 standards, enabling integration with open protocols such as NDAP and DSML, and is bundled with solutions like Identity Manager and Access Manager for comprehensive identity governance. Key functionalities include representing network resources—such as users, servers, printers, and applications—as objects in a logical , with support for transitive synchronization via the Transitive Vector attribute to optimize replication across partitions. eDirectory operates on multiple platforms, including , Windows, , AIX, and historically , facilitating multi-vendor environments and avoiding through its standards-based architecture. Background processes like Limber, Back Link, and maintain database integrity, while utilities such as iMonitor and DSTrace aid in , , and . Notable for its role in (OES), eDirectory powers authentication, authorization, and policy enforcement in hybrid IT infrastructures, supporting compliance with modern security requirements for employees, customers, and partners.

History

Origins and Early Development

NetIQ eDirectory traces its origins to Directory Services (NDS), a introduced by in 1993 as part of 4.0. NDS was developed to replace the flat, server-centric bindery system used in earlier versions, which limited resource management to individual servers. This shift enabled a more scalable approach to network administration in enterprise environments. The primary motivations for creating NDS centered on providing centralized management of network resources, including users, printers, servers, and volumes, within a hierarchical structure. By organizing these elements into a tree-like model, NDS allowed administrators to oversee the entire network from a single point, facilitating easier and across distributed systems. Technically, NDS was designed with compatibility to align with international directory standards, supporting features like extensibility and global naming. It initially utilized the Recman database engine, a record-based storage system optimized for NetWare's architecture. Its first major adoption occurred within environments, where it integrated seamlessly for user authentication and resource access, replacing bindery-based logins with directory-driven security.

Evolution and Ownership Changes

In 1999, rebranded its Novell Directory Services (NDS) to Novell eDirectory with the release of version 8.0, marking a significant evolution toward standards-based interoperability. This version introduced native support for the (LDAP) and expanded cross-platform capabilities, allowing deployment on non-NetWare operating systems such as and Unix variants, thereby broadening its applicability beyond the NetWare ecosystem. Subsequent milestones further enhanced eDirectory's integration with emerging technologies. In October 2000, version 8.5 added support for XML-based data synchronization through DirXML, enabling web services and identity provisioning across heterogeneous environments. These updates shifted eDirectory from a NetWare-centric directory to a versatile, multi-platform solution emphasizing identity management for enterprise e-business applications. Ownership changes began in November 2010 when Attachmate Corporation agreed to acquire for $2.2 billion, with the deal completing in April 2011. As part of the restructuring, Novell's and management portfolio, including eDirectory, was integrated into Attachmate's existing division, leading to its as NetIQ eDirectory to align with NetIQ's focus on solutions. In September 2014, Micro Focus International announced its acquisition of for approximately $1.2 billion, which closed in November 2014, bringing NetIQ eDirectory under ownership and further integrating it into broader offerings. This transition reinforced eDirectory's role in amid 's expansion in application delivery and . The most recent ownership shift occurred in January 2023 when completed its $6 billion acquisition of , incorporating NetIQ eDirectory into OpenText's portfolio. By 2024, it was rebranded as OpenText NetIQ eDirectory, with version 9.3 marketed as OpenText eDirectory 24.4, continuing to emphasize scalable across cloud and hybrid environments. These corporate transitions have sustained eDirectory's evolution, adapting it from proprietary roots to a key component of modern strategies.

Recent Versions and Updates

NetIQ eDirectory 9.0, released in January 2016, introduced full 64-bit support for (x86_64) and Windows (x86_64) platforms, enabling more efficient utilization in modern environments. This version also delivered performance enhancements for large-scale deployments, including optimized nested group searches, replication packet sizes increased to 1 MB, faster change rebuilding with multi-CPU utilization, and immediate post-transaction synchronization to reduce . Subsequent patches focused on security and stability. Version 9.2.2, released in May 2020 as 2, resolved key vulnerabilities by upgrading to 1.0.2u and improving Common Event Format (CEF) logging with added textual descriptions and configurable log levels for better auditing and threat detection. Later, version 9.2.8, released in May 2023 as 8, enhanced encryption capabilities through support for NICI 3.2.0 and 1.0.2zg, along with fixes for buffer overflows and certificate validation issues, while aligning with broader ecosystem integrations post-acquisition. Regarding support lifecycle, versions prior to 9.2, such as 8.8, entered sustaining maintenance in 2017 with no further patches or updates available. As of 2025, active support—including critical fixes and maintenance—continues for 9.2 and subsequent versions on 64-bit and Windows platforms, with current maintenance extended through June 2027 for the latest releases. Recent developments emphasize hybrid and cloud adaptability alongside regulatory compliance. The June 2025 release of eDirectory CE 25.2 incorporated security patches and maintenance updates to bolster data protection, supporting compliance with standards like GDPR and HIPAA through strengthened access controls and encryption. Additionally, integrations with identity services, such as automated user provisioning with , enable seamless synchronization for hybrid environments.

Technical Overview

Core Architecture

NetIQ eDirectory is built on a hierarchical, object-oriented that organizes directory information in a tree-like structure, ensuring and logical across distributed environments. This model complies with standards, supporting features such as object classes, attributes, and inheritance to define and relate directory entries, while allowing schema extensibility for custom object types. At its core, eDirectory uses the Directory Information Tree (DIT) as the foundational representation of all directory data, beginning with a [Root] partition or object and branching into containers and leaf nodes for efficient navigation and access. The DIT is divided into partitions, which serve as logical segments of the directory database named after their topmost container, such as the or partition, to optimize over wide-area networks by localizing data management. Partitions enable administrators to define boundaries between authoritative and nonauthoritative areas, with a recommended limit of 150 child partitions per parent to maintain . Replicas, as copies of these partitions, are distributed across multiple eDirectory servers to provide and , supporting types including , Read/Write, and Read-Only, with a maximum of 50 replicas per partition and up to 65,000 per server for large-scale deployments. Typically, three replicas per partition are recommended for , ensuring data distribution without compromising integrity. eDirectory employs a model, where updates can occur on any writable replica—such as or Read/Write types—and are automatically across the replica ring or the entire tree using a default for transitive propagation. This approach maintains data consistency by transferring changes shortly after transactions, with normal occurring approximately every 30 seconds and immediate priority syncs for critical updates via mechanisms like the skulker process. The architecture is event-driven, relying on triggers to initiate and other processes in response to changes, such as obituary processing or updates, supported by background agents like the for ongoing maintenance. Central to this event-driven design is full support for LDAP version 3 (LDAP v3), the standard protocol for accessing and managing the directory, including features like extensible match filters, transactions, and persistent searches for real-time event monitoring. LDAP v3 integration allows clients to bind and query the DIT seamlessly, with referrals enabling navigation across distributed servers. Examples of object types within this architecture include users and servers, which populate the DIT as leaf objects with defined attributes.

Directory Structure and Objects

NetIQ eDirectory organizes its data in a hierarchical that begins with a root container, followed by container objects such as and organizational units (OUs), and culminates in objects. The tree adopts a pyramid-like , where upper layers contain fewer broad containers (e.g., a single object representing the overall entity) and lower layers hold numerous specific objects, often structured by (such as or location-based OUs) or (such as department-based units) to reflect organizational needs. This promotes efficient navigation and management by mirroring real-world hierarchies while minimizing depth for optimal performance. eDirectory supports various object classes, each representing distinct entities in the network, including (for individuals), Group (for collections of users or objects), (for network servers), Printer (for printing devices), and Application (for software entities). These classes possess defined attributes, such as the (CN), which serves as the relative distinguished name for object identification within its parent , and the (UID), which provides a globally unique string for each object to ensure unambiguous referencing across the tree. Leaf objects like Users and Printers cannot contain other objects and hold endpoint data, while objects like OUs can nest subordinates to build the tree's structure. The eDirectory schema governs the permissible object classes and attributes, defining mandatory and optional properties for each to maintain throughout the . This is extensible, allowing administrators to define custom object classes or add auxiliary classes and attributes to accommodate specialized needs, such as industry-specific entities, without disrupting existing structures. Schema rules enforce by validating relationships between objects—for instance, ensuring that group membership lists align with member attributes on individual objects—thereby preventing orphaned or inconsistent references across the . To optimize performance in large deployments, eDirectory employs partitioning, which logically divides the tree into units of that can be managed separately. Each partition holds a subset of the tree's objects and boundaries, allowing for targeted updates and queries that reduce overall load. Partitions support master replicas for writable operations and read-only replicas for distributed read access, enabling scalability while maintaining through brief mechanisms.

Key Features

Scalability and Replication

NetIQ eDirectory achieves in large environments through , which divides the database into logical units that can be distributed across multiple servers. can be automatic, as in the default single created at the during , or , where administrators define custom based on , geography, or workload to optimize performance and manageability. This approach supports up to millions of objects—tested to 1 billion in a single tree—across thousands of servers, with no strict limit on total or objects per beyond practical constraints like disk space (up to 1 TB per database file) and I/O speed. Replication in eDirectory distributes copies of these , known as replicas, to enhance , , and query performance. Each can have multiple replicas (up to 50 recommended, though unlimited in theory), including master (for schema changes in the [Root] partition), read/write (for multi-master data updates), read-only, filtered (selective attribute replication), and subordinate reference types, with servers capable of holding over 65,000 replicas depending on resources (practical limits around 250 in some guidelines). The system employs a mesh topology for , where changes propagate automatically among replicas in a , using single-master replication for schema modifications and multi-master for general data to ensure consistency without central bottlenecks. Change detection during replication relies on timestamps and vector-based tracking, where each replica maintains a "received up to" to identify updates since the last ; if a remote 's indicates newer changes, the local server requests and applies them via protocols like LDAP Bulk Update/Replication Protocol (LBURP). This enables sub-second in distributed setups through features such as Priority Sync, roll-forward logging, and Enhanced Background , though typical cycles complete in about 30 seconds, with obituaries (deletion markers) processed post-sync. Performance tuning for involves strategic replica placement aligned with , such as positioning read/write replicas near user workgroups to minimize WAN traffic and , while read-only replicas handle high-read loads in remote sites. Load balancing for queries is achieved by distributing replicas across servers, using multiple DNS records to route traffic evenly, and enabling Advanced Referral Costing to prioritize lower-cost paths and randomly select among equivalent servers. Administrators can adjust threads ( 4, up to 32) and sizes to further optimize throughput in environments supporting over 50 million objects.

Security and Access Control

NetIQ eDirectory implements robust security mechanisms to protect directory data and regulate user access, ensuring confidentiality, integrity, and availability in enterprise environments. Central to this is a granular access control system that prevents unauthorized modifications while allowing flexible administration. These features are designed to comply with security standards and support secure integration with various protocols and applications. Access Control Lists (ACLs), also known as the Object Trustees property, form the core of eDirectory's model, defining permissions for s—such as users, groups, or roles—on specific objects and attributes. s are granted rights including Read (to view object details), Write (to modify attributes), Create (to add subordinate objects), Delete (to remove objects), and others like for full or Add Self for membership additions. When a trustee assignment is made, the is added as a value to the target's property, enabling precise over operations like attribute modifications or object creation. Administrators can use Roles and (RAC) in the Identity Console to assign task-specific rights, minimizing over-privileging and enhancing least-privilege enforcement. Effective rights are calculated dynamically by evaluating explicit s and inherited permissions, allowing eDirectory to verify access requests in . Encryption in eDirectory safeguards and at rest, supporting and . (TLS) and Secure Sockets Layer (SSL) encrypt LDAP traffic, with support for TLS 1.3 (TLS 1.2 as fallback) enabled by default on port 636, while older versions like SSLv3 and TLS 1.0/1.1 are disabled to mitigate vulnerabilities. As of version 9.3 (2025), eDirectory supports TLS 1.3 and integrates 3.0, with FIPS mode disabled by default for broader compatibility while maintaining strong cryptographic standards. Simple Authentication and Security Layer (SASL) provides mechanisms for , including integration with and other external methods. For password management, the Universal Password policy, introduced in eDirectory 8.5, enables a single, case-sensitive password with complexity requirements across all eDirectory access methods, stored with reversible encryption using 256-bit keys and optionally hashed with for non-retrievable scenarios. This policy simplifies multi-application while enforcing strong security postures. Auditing and logging capabilities in eDirectory track security-relevant events to detect and investigate potential breaches. The system logs operations such as logins, object additions, modifications, and deletions, capturing details like the , , and affected attributes for and forensic analysis. Integration with external tools is supported via secure TLS connections to auditing servers, Audit (now Audit), or for centralized . Security events can be enabled to monitor intrusion attempts, with logs configurable through or the Identity Console to balance detail with performance. Rights inheritance provides a dynamic, hierarchical model where permissions flow from container objects to leaf objects unless explicitly blocked, promoting efficient administration in large trees. Trustees assigned at higher levels (e.g., Organization unit) automatically apply to subordinates, but Inherited Rights Filters (IRFs) allow administrators to override and block specific propagation at any point. This model requires careful use of IRFs, as overuse can complicate rights tracing; tools like effective rights enumeration help verify the final permissions for any object or attribute.

Deployment

Supported Platforms

As of November 2025, OpenText eDirectory CE 25.2 (v9.3.1) supports installation on 64-bit Linux distributions including (RHEL) versions 8.8 through 9.4, Server (SLES) 15 SP3 through SP6, and 22.04 LTS, as well as and 2022. These platforms enable deployment in enterprise environments with compatibility for virtualization systems such as . Deprecated platforms include , which reached end-of-life in 2010 with the final supported version being eDirectory 8.8.8, and older Unix variants such as and AIX, which received support until under extended maintenance for eDirectory 8.8. Hardware requirements for production deployments specify a minimum of 4 GB RAM and a multi-core CPU, with scalability to clustered configurations for handling large-scale directories and needs. Disk space requirements start at approximately 500 MB for the base installation, increasing based on user volume and database size. eDirectory facilitates cross-platform replication, enabling seamless synchronization and operation across mixed operating system environments without or issues. Version-specific details are outlined in the respective release notes.

Installation and Management Tools

The of NetIQ eDirectory supports both (GUI) and command-line methods, depending on the . On Windows systems, the installer provides a GUI wizard that guides users through selecting components, licensing, and deployment options, such as installing a primary to create a new or a secondary to join an existing one. During this process, administrators specify the eDirectory name, define the object with its in the , and configure the initial , which serves as the root for and replication. On platforms, the nds-install utility, located in the Setup directory of the package, handles command-line deployment; it prompts for similar configurations, including creation or joining, object details, and setup, while allowing options for unattended via response files. Post-installation management relies on specialized tools for and . serves as the primary web-based console, enabling tasks such as creating user objects, assigning trustee rights for , managing partitions and replicas, and configuring eDirectory services from a browser accessible via . This tool centralizes eDirectory , reducing the need for platform-specific utilities and supporting role-based access for delegated tasks. Complementing , iMonitor provides cross-platform diagnostics and health for all servers in the eDirectory tree, offering real-time views of server status, connection health, synchronization issues, and error logs through a web typically accessed at port 8008 or 8009. Basic configuration during or after installation includes setting up LDAP services, which by default listen on port 389 for unencrypted connections and port 636 for secure LDAP (LDAPS). Enabling SSL/TLS requires associating a —often the default SSL CertificateDNS object—with the LDAP via tools like ldapconfig or , ensuring encrypted communications and proper DNS name resolution for certificate validation. Integration with DNS is facilitated by configuring the during setup, allowing eDirectory to resolve tree and object names consistently across the network. Upgrading eDirectory from version 8.x to 9.x or later versions such as 25.2 typically occurs in-place to preserve existing data and configurations. Supported paths include direct upgrades from eDirectory 8.8.8 or later 64-bit versions to 9.0 and beyond, using the nds-install utility with options on or the GUI installer on Windows; for earlier 8.x releases like 8.8 SP1, a stepwise approach—upgrading first to 8.8.8 or 9.2—is recommended to ensure compatibility. During the upgrade, extensions are automatically applied to the local server and synchronized across all replicas in the tree via eDirectory's replication mechanism, maintaining consistency without manual intervention.

Data Management

Storage Engine

OpenText eDirectory's storage engine has evolved significantly to enhance and . Prior to version 8.6, eDirectory (then known as Novell Directory Services or NDS) relied on a proprietary record-based database management system called RECMAN, which stored data in fixed-size records and offered limited for large directories due to its rigid structure and lack of advanced indexing capabilities. This engine was suitable for early network environments but struggled with the demands of growing enterprise deployments, prompting a redesign for better efficiency. Starting with eDirectory 8.6 in 2003, the storage engine transitioned to FLAIM (Flexible and Adaptable Information Manager), a file-based local indexed designed for hierarchical and complex data structures. FLAIM, developed by , was released as under the GNU General Public License (GPL) in 2006, enabling broader community contributions and portability across platforms while maintaining embeddable functionality for directory services. As a scalable engine supporting multiple concurrent readers and a single writer, FLAIM organizes directory data into fixed-size blocks—typically 4 KB, though configurable to 8 KB—for efficient storage and retrieval of entries, attributes, and indexes. At its core, FLAIM employs indexing structures to accelerate queries on attributes, enabling fast lookups by presence, value, or matching; default indexes are automatically created for key system attributes such as and to optimize common operations. Transaction logging is handled through a roll-forward log (RFL) that records all updates before they are committed to disk, ensuring crash recovery by replaying logs during restarts and maintaining even after abrupt failures. For space efficiency, FLAIM implements attribute , which compacts large or multi-valued attributes (exceeding 25 values or 2048 bytes) into separate containers, reducing fragmentation and improving overall database density without impacting query . Performance in FLAIM is bolstered by dual caching mechanisms: a cache (sized to the database or DIB size) for rapid update operations and an (typically 2-4 times the block cache size) using least-recently-used (LRU) to searches, with cache hit ratios monitorable via tools like iMonitor for tuning. The engine supports high-throughput environments, processing thousands of operations per second depending on hardware and configuration, with checkpoints occurring every second to flush dirty during low-activity periods. Backup and restore operations are facilitated by the DSBK (Directory Services Backup) tool, which enables hot continuous backups of the eDirectory database without downtime, leveraging the RFL for . FLAIM remains the storage engine in the latest version, eDirectory 9.3 (released 2024).

Network Configuration Storage

OpenText eDirectory serves as a centralized repository for network configuration data, storing key elements such as objects that include addresses and DNS configurations. These objects are created during and maintain the Network Address property, which can be updated using tools like the Server Repair Wizard to reflect changes in or DNS settings. This storage enables administrators to manage identities and their network endpoints within a unified . Service objects in eDirectory encapsulate configurations for essential network services, including DHCP, DNS, and NTP. For DHCP and DNS, these objects are integrated into the eDirectory tree, allowing centralized administration of zones, scopes, and records through LDAP attributes and :Service objects linked to corresponding server objects. NTP configurations are similarly stored, specifying time servers via IP addresses or DNS hostnames during eDirectory setup, ensuring synchronized time across the network for and replication processes. User profiles, represented as objects, include attributes such as network addresses, login details, and access rights, linking to network resource utilization. eDirectory supports integration with legacy systems through Bindery services emulation, where master replicas provide compatibility for older applications by mapping bindery properties to directory objects, facilitating gradual migrations without disrupting network access. Additionally, the (SLP) enables dynamic discovery of services like those stored in eDirectory, using OpenSLP implementation to advertise and locate network resources such as servers and printers across the infrastructure. These features allow eDirectory to act as a single point for , with automatic propagation of configurations through replication to ensure consistency and availability in distributed environments. The benefits of this centralized approach include reduced administrative overhead, enhanced via replication (supporting up to 250 per server with a minimum of three per recommended), and improved performance for -linked resources through synchronized data distribution. However, eDirectory is not designed as a comprehensive ; it primarily focuses on identity-linked network resources, with limitations such as maximum replica counts (50 per , 250 per server) that can increase traffic and slow response times in large deployments.

References

  1. [1]
    OpenText eDirectory - Identity and Access Management
    It is a high-end directory service that enables businesses to manage identities and secure access for employees, customers, and partners.
  2. [2]
    [PDF] Novell eDirectory Technical Overview
    Mar 1, 2006 · eDirectory is available on multiple operating systems: NetWare®, Windows 2000, Windows NT,. Sun Solaris, Unix and Linux and IBM AIX. Usually ...
  3. [3]
    Understanding NetIQ eDirectory - Identity and Access Management
    NetIQ eDirectory is a list of objects that represent network resources, such as network users, servers, printers, print queues, and applications.
  4. [4]
    An Introduction to NetWare Directory Services - Micro Focus support
    01 Apr 1993. NetWare Directory Services (NDS) is a globally distributed network database that replaces the bindery used in previous versions of NetWare.
  5. [5]
    Overview of Novell Directory Services - Micro Focus support
    Novell Directory Access Protocol (NDAP) is the standard protocol allowing NetWare access to NDS. Bindery. NDS treats the bindery as an emulated database stored ...
  6. [6]
    RECMAN - LDAPWiki
    RECMAN was, on NetWare prior to version 8 (then called Novell Directory Services (NDS)), used a record-based database management engine called RECMAN.Missing: X. 500
  7. [7]
    What is NDS eDirectory? - Micro Focus
    Mar 1, 2000 · Novell Directory Service eDirectory was previously referred to as NDS v8. "V8" is the version of NDS that contains NDS eDirectory. NDS ...Missing: rebranding | Show results with:rebranding
  8. [8]
    NDS eDirectory 8.5: A Detailed Overview - Micro Focus support
    Nov 1, 2000 · This latest version of Novell Directory Services (NDS) powers e-businesses running on NetWare, Windows 2000, Windows NT, Solaris, and Linux ...Missing: 2003 | Show results with:2003
  9. [9]
    Novell Agrees to be Acquired by Attachmate Corporation for $6.10 ...
    Nov 22, 2010 · Attachmate Corporation plans to operate Novell as two business units: Novell and SUSE; and will join them with its other holdings, Attachmate ...Missing: eDirectory | Show results with:eDirectory
  10. [10]
    Attachmate Splits Novell Acquisition into NetIQ, SUSE Divisions
    With the Novell buyout complete, Attachmate has moved its open-source products into SUSE and security products into its NetIQ business divisions.Missing: 2010 | Show results with:2010
  11. [11]
    The Attachmate Group Enters into Agreement to Merge with Micro ...
    Sep 15, 2014 · The transaction is expected to close on November 3, 2014. It is subject to customary closing conditions, including Micro Focus shareholder ...Missing: date | Show results with:date
  12. [12]
    Open Text Corporation - OpenText Buys Micro Focus
    Jan 31, 2023 · OpenText (NASDAQ: OTEX), (TSX: OTEX) announced today that it has closed the previously announced acquisition (the "Acquisition") of Micro Focus International ...
  13. [13]
    [PDF] OpenText™ eDirectory CE 24.4 (v9.3) Release Notes
    Jan 2, 2025 · NetIQ eDirectory 9.3 is known as OpenText™ eDirectory 24.4 (v9.3). The changes are available for installer and utilities. Support for TLS 1.3 ...
  14. [14]
    Micro Focus | OpenText
    Prior to acquisition by OpenText, Micro Focus acquired the following companies: Acucorp, Inc. Authasas; ATAR Labs; Attachmate Group (Attachmate, NetIQ, Novell, ...
  15. [15]
    NetIQ eDirectory 9.0 Release Notes
    This release introduces an LDAP search method for retrieving the real time statistics for eDirectory subsystems and background processes such as Threadpool, ...
  16. [16]
    NetIQ eDirectory 9.2 SP2 Release Notes
    NetIQ eDirectory 9.2 SP2 resolves several previous issues. Many of these improvements were made in direct response to suggestions from our customers.Missing: 9.2.2 security
  17. [17]
    NetIQ eDirectory 9.2 Service Pack 8 Release Notes
    NetIQ eDirectory 9.2 SP8 resolves several previous issues. Many of these improvements were made in direct response to suggestions from our customers.
  18. [18]
    Product Support Lifecycle - OpenText
    OpenText's product support lifecycle has guidelines for the availability and level of support during the life of a product under an active maintenance ...
  19. [19]
    Release notes - OpenText Documentation Portal
    Jun 27, 2025 · June 2025. OpenText eDirectory CE 25.2 includes new features and resolves several previous issues. Many of these improvements were made in ...
  20. [20]
    Configure OpenText Directory Services for automatic user ...
    Mar 25, 2025 · This article describes the steps you need to perform in both OpenText Directory Services and Microsoft Entra ID to configure automatic user provisioning.<|control11|><|separator|>
  21. [21]
    [PDF] NetIQ eDirectory Administration Guide
    Selling intelligent solutions, not just software. In order to provide reliable control, we first make sure we understand the real-world scenarios in.
  22. [22]
    13.2 Understanding How LDAP Works with eDirectory
    All LDAP clients bind (connect) to NetIQ eDirectory as one of the following types of users: ... Directory Information Tree (DIT). For more information, see ...
  23. [23]
    Object Classes and Properties - NetIQ eDirectory 8.8 SP8 ...
    Each class of object has certain properties. A User object, for example, has First Name, Last Name, and many other properties. The schema defines the object ...Missing: UID | Show results with:UID
  24. [24]
    2.2 Designing the eDirectory Tree - Identity and Access Management
    Designing the eDirectory tree is the most important procedure in the design and implementation of a network. The design consists of the following tasks.
  25. [25]
    2.2 Designing the eDirectory Tree - Identity and Access Management
    Designing an eDirectory tree involves creating naming standards, designing upper layers using a pyramid design, and designing lower layers based on network ...Missing: geography function
  26. [26]
    Schema - NetIQ eDirectory Administration Guide
    Schema defines the types of objects that can be created in your tree (such as Users, Printers, and Groups) and what information is required or optional at ...Missing: UID | Show results with:UID
  27. [27]
    [PDF] Novell eDirectory Schema Reference
    Online Documentation: To access the online documentation for this and other Novell developer products, and to get updates, see developer.novell.com/ndk. To ...Missing: architecture | Show results with:architecture
  28. [28]
    Partitions - NetIQ eDirectory Administration Guide
    A partition is a logical division of the eDirectory database. A directory partition forms a distinct unit of data in the tree that stores directory information.Missing: master | Show results with:master
  29. [29]
    Managing Partitions and Replicas - NetIQ eDirectory Administration ...
    Partitions are logical divisions of the NetIQ eDirectory database that form a distinct unit of data in the eDirectory tree for administrators to store and ...
  30. [30]
    2.3 Guidelines for Partitioning Your Tree
    When you partition eDirectory, you allow parts of the database to exist on several servers. With this capability, you can optimize network use by ...
  31. [31]
    [PDF] NetIQ eDirectory - Security Guide
    The Security Guide provides configuration guidelines to network administrators. These guidelines can help to enhance the security of an eDirectory ...
  32. [32]
    1.9 eDirectory Rights - Identity and Access Management
    Access Control List (ACL) · Anyone who has the Supervisor or Write right to the Object Trustees (ACL) property of an object can determine who is a trustee of ...
  33. [33]
    https://www.netiq.com/documentation/edirectory-92/edir_admin/data/fbachifb.html
  34. [34]
    History of NetIQ Passwords - NetIQ eDirectory Administration Guide
    In the past, administrators have had to manage multiple passwords (simple password, NDS password, enhanced password) because of password limitations.
  35. [35]
    Auditing with Novell Audit - NetIQ eDirectory Administration Guide
    Using the Novell Audit package, you can send events generated by eDirectory to an outside auditing client for monitoring purposes.
  36. [36]
    OpenText eDirectory CE 24.4 (v9.3) Release Notes
    OpenText eDirectory CE 24.4 (v9.3) Release Notes includes new features and resolves several previous issues.Missing: timeline | Show results with:timeline
  37. [37]
    Installing or updating OpenText eDirectory on a Windows server
    Jul 27, 2025 · NetIQ Modular Authentication Service (NMAS) server components are installed automatically when you run the eDirectory installation program. The ...
  38. [38]
    System Requirements - OpenText™ eDirectory CE 24.4 (v9.3 ...
    You must install OpenText eDirectory on one of the following 64-bit platforms, at a minimum: Memory, Virtualization Systems, VMWare, ESXi.Missing: hardware | Show results with:hardware
  39. [39]
    eDirectory 8.8 SP8 - Identity and Access Management
    Select a topic ; NetIQ eDirectory 8.8.8 Patch 9, 10/17/2016 ; NetIQ eDirectory 8.8.8 Patch 8, 01/28/2016 ; NetIQ eDirectory 8.8.8 Patch 7, 01/28/2016 ; NetIQ ...
  40. [40]
    Hardware requirements - eDirectory
    Jun 12, 2025 · Hardware requirements depend on the specific implementation of OpenText eDirectory. Two factors increase performance: more cache memory and ...
  41. [41]
    Hardware requirements - eDirectory
    Jun 13, 2025 · For example, a base installation of OpenText eDirectory with the standard schema requires about 74 MB of disk space for every 50,000 users.
  42. [42]
    OpenText eDirectory CE 24.4 (v9.3) - Identity and Access Management
    It is a high-end directory service that enables businesses to manage identities and secure access for employees, customers, and partners.Missing: distributions | Show results with:distributions
  43. [43]
    OpenText™ eDirectory CE 24.4 (v9.3) Installation Guide
    Use the nds-install utility to install OpenText eDirectory components on Linux systems. This utility is located in the Setup directory of the downloaded file ...
  44. [44]
    iManager 3.2 - Identity and Access Management
    Using iManager, you can administer NetIQ eDirectory. This centralized management system eliminates administrative redundancy and unnecessary overhead, saving ...
  45. [45]
    Overview - NetIQ ® iManager Administration Guide
    NetIQ iManager is a Web-based administration console that provides secure, customized access to network administration utilities and content.
  46. [46]
    Using NetIQ iMonitor - NetIQ eDirectory Administration Guide
    Trace History lets you view a list of previous trace runs. Each previous trace log is identified by the period of time during which the trace data was being ...
  47. [47]
    Configuring LDAP Objects - NetIQ eDirectory Administration Guide
    An eDirectory installation creates an LDAP server object and an LDAP Group object. The default configuration for LDAP Services is located in the directory ...
  48. [48]
    Subject Alternate Name for DNS in SSL CertificateDNS
    Jan 23, 2025 · When I install new eDirectory 9.3 servers the default certificates (SSL CertificateDNS) doesn't get the DNS name added as Subject Alternate Name ...
  49. [49]
    Upgrading eDirectory - NetIQ eDirectory Installation Guide
    When upgrading eDirectory, you can upgrade from eDirectory 8.8.6.x 64-bit to eDirectory 9.0 64-bit. NOTE:To upgrade from a 32-bit version of eDirectory to a 64 ...
  50. [50]
    Upgrading OpenText eDirectory
    Jul 27, 2025 · It is recommended not to directly upgrade OpenText eDirectory from version 8.8SP1 to latest version. You must upgrade to 9.2 and then to the ...
  51. [51]
    [PDF] Novell eDirectory Management - Higher Education | Pearson
    This database is referred to as the RECMAN database. ... Rather than placing full replicas of the entire. eDirectory database on this server, you can create a set ...Missing: compatibility | Show results with:compatibility
  52. [52]
    Understanding Netiq eDirectory 8.X.X - Linux On Fire
    Sep 28, 2012 · Versions of NDS prior to NDS 8 use a database engine called Recman, which, as the name suggests, is a record-based database management engine.Missing: early | Show results with:early
  53. [53]
    Comparing eDirectory with RDMS and Active Directory
    Jun 11, 2011 · FLAIM itself is now released under the GPL and is available from forge.novell.com. It was originally developed to represent hierarchical data ...
  54. [54]
    [PDF] NetIQ eDirectory Tuning Guide
    CPU Subsystem​​ eDirectory is built on a highly scalable architecture. The performance increases with the increase in the number of processors. Increased ...Missing: benchmarks | Show results with:benchmarks
  55. [55]
    FLAIM Database - NetIQ eDirectory Tuning Guide
    It is a very scalable database engine that supports multiple readers and a single-writer concurrency model. Readers do not block writers and writers do not ...Missing: benchmarks | Show results with:benchmarks
  56. [56]
    Using DSBK - NetIQ eDirectory Administration Guide
    DSBK is a thin command line parser that performs eDirectory Backup, and lets you to initiate a backup from the server console without having to log in first.
  57. [57]
    [PDF] NetIQ eDirectory Administration Guide
    NetIQ eDirectory natively supports the directory ... eDirectory ease-of-management features include a powerful tree structure, an integrated management utility, ...
  58. [58]
    [PDF] DNS/DHCP Services for Linux Administration Guide - OpenText
    Jan 7, 2015 · Dynamic Host Configuration Protocol (DHCP) services into NetIQ eDirectory. ... objects in DNS and DHCP, see “DNS eDirectory Objects and Attributes ...
  59. [59]
    Configuring Open Enterprise Server - OES 23.4: Installation Guide
    On the eDirectory Configuration - NTP page, click Add. In the Time Servers text box, specify the IP address or DNS hostname of an NTP server, then click Add.Missing: profiles | Show results with:profiles
  60. [60]
    Replicas in eDirectory - Micro Focus support
    Jul 1, 2002 · The Read-Only replica is a readable replica type used to read information about all objects in a partition's boundaries. This replica type is ...
  61. [61]
    Service Location Protocol - NetIQ eDirectory Installation Guide
    OpenSLP is an open-source implementation of the IETF Service Location Protocol Version 2.0 standard, which is documented in IETF Request-For-Comments (RFC) ...