1.7. Configuring the Directory Manager

The Directory Manager is the privileged database administrator, comparable to the root user in UNIX. Access control does not apply to the Directory Manager entry; likewise, limits on searches and other operations do not apply. The Directory Manager entry is created during installation; the default DN is cn=Directory Manager. The password for this user is defined in the nsslapd-rootdn attribute.

To change the Directory Manager DN and password and the encryption scheme used for this password, do the following:

Log in to the Directory Server Console as Directory Manager.
If you are already logged in to the Console, change the bind DN, as described in Section 1.4.2, “Changing Login Identity”.
In the Directory Server Console, select the Configuration tab, and then select the top entry in the navigation tree in the left pane.
Select the Manager tab in the right pane.
Enter the new distinguished name for the Directory Manager in the Root DN field.
The default value is cn=Directory Manager.
From the Manager Password Encryption pull-down menu, select the storage scheme you want the server to use to store the password for Directory Manager.
Enter the new password, and confirm it.
Click Save.