Backing Up and Restoring Open Directory with Archives
Open Directory contains several databases of critical information that, in heavily used domains, are constantly being accessed and modified. Open Directory includes the ability for you to easily create backup archives of the entire shared domain, including the LDAP directory, the Password Server database, and the Kerberos realm. During the archive process, which takes a matter of seconds, the open databases are closed and copied.
The downside to the Apple implementation of archiving in Server Admin is the lack of scheduling. The only way to schedule is with the command line.
Because the archive contains password information, the archive is encrypted in a disk image. Your password for the archive and the archives themselves need to be closely guarded, like any other sensitive data.
Creating an archive in Server Admin
Start by reviewing the options for archiving and restoring Open Directory domains in Server Admin. Work on the Open Directory master — you can't create an archive from a replica server. To create an archive:
- Open Server Admin and connect to the Open Directory master.
- Click the triangle next to the server to expand the list of services and select Open Directory.
- Click the Archive icon in the toolbar.
- Type a folder path or click the Choose button next to the Archive In field and select a location to save the archive.
You're browsing the file system of the server regardless of where you run Server Admin.
In Figure ...
Get Mac OS X Lion Server For Dummies® now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
