Naming your top level domain
I am setting up a new directory server for our organization, we'll call it direct.org.
I would like to know how you determine which way to name your top level domain.
o=direct
o=direct.org
dc=direct,dc=org
Most of the organizations around us use the "o=xxxx.org" or "o=xxxx.edu" so I set up our test server as o=direct.org. Before I put this thing into production I wanted to find out what factors are used to determine how you define the top level domain.
We are, in a sense, an ISP. However, our only clients are educational institutions.
I took Sun's Directory Server class last year and I asked this question in class. It seems that nobody could come up with a clear answer to this question.
For LDAP V2 - use o=direct.org
for LDAP V3 - use dc=direct,dc=org
Similar Messages
-
Naming of top level in a dimension
Hi,
I was wondering if the naming of the top level in a dimension. Earlier I have just named the top levels whatever suited me the best, and haven't had any problems with that. A couple of days ago I came a across an article on Mark Rittmans weblog where it said that Discoverer and BI beans expect a total level.
Should all the top levels be named total_***** ?
What is the consequence of not naming them total_****?
Anyone have any thoughts on this?
Regards RagnarLevel names can be reused across dimensions. This is common. For example, detail level data is very often shared across levels. When is comes to summary levels, you need decide whether this makes sense. Consider two hierarchies:
Shipping Hierarchy, with levels:
Total Product
Region Shipments
Country Shipments
Warehouse
Item
Product Type hierarchy, with levels:
Total Product
Brand
Group
Item
In the above case, Total Product in each hierarchy should yield the same values because it is the aggregation of all items. So, you might decide that is ok. A different case might not be ok. Consider:
Shipping Hierarchy, with levels:
Total Product
Region Shipments
Country Shipments
Warehouse
Items shipped
Product Type hierarchy, with levels:
Total Product
Brand
Group
Items sold
Since Items Shipped and Items Sold are likely to have different values, the aggregation of each level will yield a different value. In this case, Total Product as the top of each hierarchy doesn't make sense.
A different twist would be (note the display names):
Shipping Hierarchy, with levels:
Total Shipments with 'Total Product' as display name
Region Shipments
Country Shipments
Warehouse
Items shipped
Product Type hierarchy, with levels:
Total Product Types with 'Total Product' as display name
Brand
Group
Items sold
In this case there will be different levels with different values, but the user will see each as 'Total Product'. Only your user community can tell you if this is want they want. -
How to connect top level domain database to subdomains
Created subdomains for the top level domains. Need to learn
how can we connect centralized database in the top level domain
with the subdomains code in coldfusion.If you're using EOP and your goal is to block stuff coming from a certain geographic area then you need to go to your exchange admin center select Protection>content filter>Default Policy>International Spam>Filter email messages sent from the
following countries or regions -
How to block top-level domain names in rules for EOP?
Using EOP for email filtering to/from our on-premise Exchange server. How do I block entire top-level domains in the rules section under mail flow? For example, w need everything ending with .link blocked. Right now I
have only been able to block email addresses and full domain names. I know I can setup a transport rule in our exchange, but I'd prefer EOP handle this before like it should. Thanks in advance.If you're using EOP and your goal is to block stuff coming from a certain geographic area then you need to go to your exchange admin center select Protection>content filter>Default Policy>International Spam>Filter email messages sent from the
following countries or regions -
DNS Server does not resolve new generic Top Level Domain names- CNR configuration issue?
Hi all,
I am not sure if this is the correct community to post this question, but I will give it a try. I noticed that the users of my network cannot resolve web sites using new top level domain names, like ".education", ".international", etc. I have an internal DNS server made by Infoblox and a Cisco CNR v6.3.3.1 as an external DNS server. Infoblox uses CNR as its forwarder and CNR uses the root DNS servers for queries.
I would think that CNR was the problem because it is an obsolete product but after speaking with a fellow engineer at another organization where they still use an older version of CNR than mine, they have no problems at all. So now I am thinking it is a setting either on Infoblox, or on CNR I need to change. I can see Infoblox is forwarding the requests to CNR but that's about it. I am not sure if CNR is discarding the request. When I do an nslookup from a PC in my network it does not matter if I set my DNS server to be the Infoblox or the CNR. Neither resolves the URL.
Then again, no matter what I lookup using the CNR as my DNS, I only get a response with the root DNS names and IPs!
Any help is appreciated!Hi Constantinos,
Have you taken a look at the infoblox community site? We've just reposted your question there and alerted some internal SMEs that should provide a solution soon.
https://community.infoblox.com/forum/ddi/dns-server-does-not-resolve-new-generic-top-level-domain-names-cnr-configuration-issue
Best,
Eric -
IMessage and new Top level domains
My new email address has a new top-level domain (.kiwi instead of .nz) - I am trying to get iMessage to allow the use of that address, but the verification email never arrives. Anyone know a way to convince Apple that my new email address is legitimate and can be used for iMessage and FaceTime?
Hello The-Organist,
After reviewing your post, I have located an article that can help in this situation. It contains a number of troubleshooting steps and helpful advice concerning Apple ID issues:
Frequently asked questions about Apple ID
http://support.apple.com/kb/ht5622
How do I verify my Apple ID by email?
Simply follow the link in the verification email that says "Verify Now." Sign in with your current Apple ID and password, then click Verify Address. You can also verify by signing in at My Apple ID. You'll receive an email prompting you to verify.
Thank you for contributing to Apple Support Communities.
Cheers,
BobbyD -
How to stop location bar autocomplete from using top-level domains?
I love the location bar autocomplete - or at least, I used to. I had it trained to the point where typing one letter was enough to bring up the pages I used most often. But now with Firefox 12, it ignores all that and favors top-level domains.
For instance: I haven't been to the front page of YouTube in years; there's no reason to go there. When I would type "www.y" into the location bar, it would pop up to the one video I visited most often - and that's exactly what I WANTED it to do. Now it defaults to "YouTube.com" and I have to scroll down to find the actual page I want. Same deal with Wikipedia: I don't want to go to the front page, I want to go to the page I use most often for research.
So basically, what do I need to change to get the location bar autocomplete to stop giving me top-level domains I don't want, and go back to giving me the subpages I spent years training it to favor? Scrolling down to the right entry is a waste of time when typing one letter and hitting enter should be enough to do it...And I meant the actual location bar, not the dropdown menu below it. The dropdown is fine: it's the autocomplete '''in''' the location bar that needs to be fixed...
-
Service interruption when adding cluster top level domain in CUCM 9.1.2?
I need to add a top level domain in CUCM 9.1.2. Will this result in any downtime or endpoint resets?
Hi,
No, it is not service impacting. It does not require any reset of devices or services.
HTH
Manish -
Realms with different top-level domain
I'm testing OCS 10.1.2 and I am interested in setting up multiple realms.
Must all realms be in the same top-level domain? I see in the examples (like in Note Note:317434.1) names like this:
- Default realm created at install:
dc=us,dc=oracle,dc=com
- Additional realms created by the administrator post-install:
dc=uk,dc=oracle,dc=com
dc=ca,dc=oracle,dc=com
A more typical example for what we need would be:
dc=company,dc=co,dc=uk
dc=company,dc=no
dc=company,dc=de
Is this possible?What are the consequence of that? Any practical problems?
I see in Note 308682.1 that the top level of a top level domain is NULL. So maybe instead of world you can use an empty top level domain.
However, this document refers to mail and not OID. -
I'm trying to configure a transport rule in Exchange 2013 to block all emails from the TLD .eu We get nothing but a TON of spam that is not caught by the Exchange 2013 spam filter, and it's always from a different domain. I have seen guides for
2007 and 2010, but nothing for 2013.
Do I just use the rule "The sender domain is" and use the value ".eu"? I just want to verify this is the correct way to block a TLD.Hi Jsilveri,
You can use Sender Filtering feature:
Set-SenderFilterConfig –BlockedDomains
http://technet.microsoft.com/en-us/library/bb124087(v=exchg.150).aspx
Thanks,
Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
[email protected]
Simon Wu
TechNet Community Support
That is the same answer as before. The domain changes with each spam message. I need to block anything coming from a .EU top level domain. So domain1.eu , domain2.eu should all be blocked with 1 rule. -
Email address with new top level domain (TLD)
Hi all,
Apple does not recognise the new top level domains. My company has a new domain e.g. aaa.systems and os x says that the email [email protected] is not valid!
Please help.This will work partly. But the mail address will still be [email protected] and gives an issue with the outgoing mail server.
-
Clean and Pristine AD Migration with same top level domain, possible?
We had planned on doing a C&P migration of a domain with the initial assumption that the TLD was .local.
Turns out it is .com, is it still possible to do C&P?
TLD is company.com, no sub domain.
We want xxxxxxx.company.com as the AD sub domain. From everything I read C&P requires a different TLD or can it work so long as we use a sub domain? Eventually the old server will go away.
Going from 2003 64 Bit to 2012 R2 as far as schema.Yes you can.
But
If you have xyz.com now and you want sub.xyz.com and you create this as a child domain then the old xyz.com will always be around. You can create sub.xyz.com as a different forest and migrate off of xyz.com if you want.
If you're going from 2003 to 2012 you'll need to wait for the newest version of ADMT to be released. Right now 3.2 does not support 2012. You can create the new domain as 2008 R2 and then raise it to 2012 after your migration if you need to start
soonest.
If it answered your question, remember to “Mark as Answer”.
If you found this post helpful, please “Vote as Helpful”.
Postings are provided “AS IS” with no warranties, and confers no rights.
Active Directory: Ultimate Reading Collection -
ADFS server pointing to multiple top level domains
Hi,
I have two separate Active Directory Forests setup in my environment (domainA.net and domainB.net) Each forest has a few child subdomains.
I would like one ADFS website to allow authentication for both AD forests in my environment.
Is there a way for me to configure that?
Please advise.
Thanks,If there's no forest trust between the two AD forests, then you'll need an additional AD FS installation in the forest where it doesn't currently exist. For example, if the AD FS instance exists in ForestB, then a separate AD FS instance is required in
Forest A.. from the AD FS setup in Forest B, the Forest A AD FS instance can be configured as a claims provider and Forest B is configured as a relying party on the Forest A instance.. In other words, you're building a circle of trust.. this can be via legacy
means (using a forest trust or two-way trust subject to your requirements) or via a federation trust using AD FS, via the claims provider approach I described... post back if you need more info..
http://blog.auth360.net -
Top Level Domain for DDNS not working (still) for RV320
Please see the following thread for further details: https://supportforums.cisco.com/discussion/12104721/rv320-ddns-update-top-domain
When will an update be made available?
Thanks.If you enter "www.shenzhenguide.com IN CNAME ns1" there has to be a dot after the .com like : "www.shenzhenguide.com. IN CNAME ns1" but you usually drop it to "www IN CNAME ns1" instead.
(I don't think you can call the host in a domain for a subdomain).
Try it like this:
$TTL 3600
shenzhenguide.com. IN SOA ns1.shenzhenguide.com. info.shenzhenparty.com. (
2006061012 ; serial
3h ; refresh
1h ; retry
1w ; expiry
1h ) ; minimum
shenzhenguide.com. IN NS ns1.shenzhenguide.com.
shenzhenguide.com. IN NS ns2.shenzhenguide.com.
shenzhenguide.com. IN A 61.145.163.184
ns1 IN A 61.145.163.184
www IN CNAME ns1
mail IN CNAME ns1
shenzhenguide.com. IN MX 1 ns1 (maybe use: shenzhenguide.com. IN MX 1 mail.shenzhenguide.com. instead)
ns2 IN A 210.17.235.228
What's this? :
*.shenzhenguide.com IN CNAME ns1
And the domain is now handled by zoneedit (with all A records for mail and www.):
host -v www.shenzhenguide.com
Trying "www.shenzhenguide.com"
;; QUESTION SECTION:
;www.shenzhenguide.com. IN A
;; ANSWER SECTION:
www.shenzhenguide.com. 7200 IN A 61.145.163.184
;; AUTHORITY SECTION:
shenzhenguide.com. 6688 IN NS ns17.zoneedit.com.
shenzhenguide.com. 6688 IN NS ns3.zoneedit.com.
host -v -t mx shenzhenguide.com
Trying "shenzhenguide.com"
;; ANSWER SECTION:
shenzhenguide.com. 7200 IN MX 0 mail.shenzhenguide.com.
And there's no reverse:
host -v 61.145.163.184
Trying "184.163.145.61.in-addr.arpa"
Host 184.163.145.61.in-addr.arpa not found: 3(NXDOMAIN) -
DNS Server working for top level domain but not host
Hello,
I just set up the DNS server on my server and thought I had it working until I tried the sub-domains. I could get to example.com but mail.example.com and www.example.com did not resolve properly even though I had specified them as aliases for the machine record.
Does anyone know where to look for the cause of this problem? Below I have included my zone file for the domain:
ns1:/var/named$ more shenzhenguide.com.zone
$TTL 3600
shenzhenguide.com. IN SOA ns1.shenzhenguide.com. info.shenzhenparty.com. (
2006061012 ; serial
3h ; refresh
1h ; retry
1w ; expiry
1h ) ; minimum
shenzhenguide.com. IN NS ns1.shenzhenguide.com.
shenzhenguide.com. IN NS ns2.shenzhenguide.com.
shenzhenguide.com. IN A 61.145.163.184
ns1 IN A 61.145.163.184
shenzhenguide.com IN CNAME ns1
www.shenzhenguide.com IN CNAME ns1
mail.shenzhenguide.com IN CNAME ns1
*.shenzhenguide.com IN CNAME ns1
shenzhenguide.com. IN MX 1 ns1
ns1 IN TXT "aliases don't work"
ns2 IN A 210.17.235.228If you enter "www.shenzhenguide.com IN CNAME ns1" there has to be a dot after the .com like : "www.shenzhenguide.com. IN CNAME ns1" but you usually drop it to "www IN CNAME ns1" instead.
(I don't think you can call the host in a domain for a subdomain).
Try it like this:
$TTL 3600
shenzhenguide.com. IN SOA ns1.shenzhenguide.com. info.shenzhenparty.com. (
2006061012 ; serial
3h ; refresh
1h ; retry
1w ; expiry
1h ) ; minimum
shenzhenguide.com. IN NS ns1.shenzhenguide.com.
shenzhenguide.com. IN NS ns2.shenzhenguide.com.
shenzhenguide.com. IN A 61.145.163.184
ns1 IN A 61.145.163.184
www IN CNAME ns1
mail IN CNAME ns1
shenzhenguide.com. IN MX 1 ns1 (maybe use: shenzhenguide.com. IN MX 1 mail.shenzhenguide.com. instead)
ns2 IN A 210.17.235.228
What's this? :
*.shenzhenguide.com IN CNAME ns1
And the domain is now handled by zoneedit (with all A records for mail and www.):
host -v www.shenzhenguide.com
Trying "www.shenzhenguide.com"
;; QUESTION SECTION:
;www.shenzhenguide.com. IN A
;; ANSWER SECTION:
www.shenzhenguide.com. 7200 IN A 61.145.163.184
;; AUTHORITY SECTION:
shenzhenguide.com. 6688 IN NS ns17.zoneedit.com.
shenzhenguide.com. 6688 IN NS ns3.zoneedit.com.
host -v -t mx shenzhenguide.com
Trying "shenzhenguide.com"
;; ANSWER SECTION:
shenzhenguide.com. 7200 IN MX 0 mail.shenzhenguide.com.
And there's no reverse:
host -v 61.145.163.184
Trying "184.163.145.61.in-addr.arpa"
Host 184.163.145.61.in-addr.arpa not found: 3(NXDOMAIN)
Maybe you are looking for
-
Error while uploading the logo using se78
Hi All, I am using se78 tansaction to upload the company logo.i save the file as .bmp on desktop.while importing the file its giving me an error that file format is not valid.Please tell me which format should i use to upload the logo. Regards lalit
-
Adobe Flash Player uninstalls itself after successful install/thenreboot in Windows Vista, IE 64 Bit
Cannot reinstall. IT is not installed anywhere on the machine. How can I install it again and resolve the issue quickly?
-
Header screen is not visible in VA21
Hi all, I added new tab in Header Details in quotation screen VA21. It is working fine. My problem is: Case1: Now currently I am in custom tab which I have created. If I click on back button, it is coming to main screen. Now immediately, If I press H
-
Deleted a mailbox and its name still appears.
I deleted a mailbox and the emails were gone, but not the name of the mailbox. What can I do to get rid of the mailbox name?
-
VB scripts conversion in DIADEM version 9 to 11
Hi all, If I want to convert the VB scripts, which are in DIADEM version 9 or 10 to version 11.0, is there any automatic way of converting them. If yes, whether those converted codes are 100 % correct ? Because I have heard that those conversions ar