You can prevent the administration server for the Domino Directory from processing LDAP requests, and leave this processing to another server or servers in the domain that run the LDAP service. Prevent the administration server from LDAP request processing, for example, if the LDAP ports on the administration server conflict with the operating system. When you disable the LDAP ports on the Domino Directory administration server, the LDAP service on the server continues to run the schema daemon and verify the directory tree for the domain, but does not accept LDAP client requests.

To disable the LDAP ports:

1. Open the Server document of the Domino Directory administration server.

2. Click Edit Server.

3. Click the Ports - Internet Ports - Directory tab.

4. In the "SSL port status" and "TCP/IP port status" fields, choose Disabled.

5. Click Save & Close.

6. If necessary, wait for the change to replicate to the Domino Directory administration server for the domain, then enter this command on the Domino Directory administration server to put the changes into effect:

Restart Task LDAP

"LDAP Server: No ports enabled, listener not started but control task running to maintain schema."

Disabling the LDAP service in a domain

If you do not want to run the LDAP service on any server in a domain, you can stop the LDAP service from running on the administration server for the Domino Directory. Do the following on the administration server:

1. Add the NOTES.INI setting DisableLDAPOnAdmin=1.

2. Remove LDAP from the ServerTasks NOTES.INI setting.

See also

The LDAP service and directory tree verification
The schema daemon
The LDAP Service
Setting up the LDAP service

Glossary