1. Home
  2. Lainnya

Click Apply. Oracle Fusion Middleware Online Documentation Library

13 Managing Directory Entries 13-1 13 Managing Directory Entries This chapter contains these topics: ■ Introduction to Managing Directory Entries ■ Managing Entries by Using Oracle Directory Services Manager ■ Managing Entries by Using LDAP Command-Line Tools Introduction to Managing Directory Entries The primary function of most directories is to store information about users and return that information in response to requests. Applications that request information from the directory server are called clients of the server. As administrator, you manage users, groups, and other types of entries by using Oracle Directory Services manager or the command-line tools. Managing Entries by Using Oracle Directory Services Manager You display entries, including users and groups, by using the Data Browser in Oracle Directory Services Manager. The current chapter focuses on users and other types of entries. Chapter 14, Managing Dynamic and Static Groups discusses groups and group entries in more detail. This section contains these topics: ■ Displaying Entries by Using Oracle Directory Services Manager ■ Searching for Entries by Using Oracle Directory Services Manager ■ Importing Entries from an LDIF File by Using Oracle Directory Services Manager ■ Exporting Entries to an LDIF File by Using Oracle Directory Services Manager ■ Viewing Attributes for a Specific Entry by Using Oracle Directory Services Manager ■ Deleting an Entry or Subtree by Using Oracle Directory Services Manager Adding a New Entry by Using Oracle Directory Services Manager ■ Adding an Entry by Copying an Existing Entry in Oracle Directory Services Manager See Also: Chapter 3, Understanding Oracle Internet Directory Concepts and Architecture, for introductory information about entries, object classes, and attributes. 13-2 Oracle Fusion Middleware Administrators Guide for Oracle Internet Directory ■ Modifying an Entry by Using Oracle Directory Services Manager Displaying Entries by Using Oracle Directory Services Manager To display entries by using the Data Browser in Oracle Directory Services Manager proceed as follows:

1. Invoke Oracle Directory Services Manager and connect to the Oracle Internet

Directory server as described in Invoking Oracle Directory Services Manager on page 7-9.

2. From the task selection bar, select Data Browser.

3. If desired, expand items in the data tree in the left panel to view the entries in each

subtree. Entries of some object class types have generic icons in the data tree. Others are shown with a specific icon. For example: When an access control list ACL has been set on an entry, the icon changes; a small key appears to the right of the icon. For example:

4. If desired, mouse over each icon in the tool bar to read the icons action.

See Also: ■ Adding or Modifying an ACP by Using the Data Browser in ODSM on page 21 ■ Setting or Modifying Entry-Level Access by Using the Data Browser in ODSM on page 21 for information on setting or modifying access control on an entry. Object Class Icon User Group OrganizationalUnit Organization Domain Country Generic Object Class Icon with ACL User Group See Also: Chapter 29, Managing Directory Access Control. Managing Directory Entries 13-3

5. Select the Refresh the entry icon to refresh only the entry in the right pane. Select

the Refresh subtree entries icon to refresh child entries of the selected entry. 6. To limit the number of entries displayed in a subtree, select the entry at the root of the subtree, then click the Filter child entries icon and specify a filter, as follows: a. In the Max Results field, specify a number from 1 to 1000, indicating the maximum number of entries to return. b. From the list at the left end of the search criteria bar, select an attribute of the entries you want to view. c. From the list in the middle of the search criteria bar, select a filter. d. In the text box at the right end of the search criteria bar, type the value for the attribute you just selected. For example, if the attribute you selected was cn, you could type the particular common name you want to find. e. Click + to add this search criterion to the LDAP Query field.

f. To view the LDAP filter you have selected, select Show LDAP filter.

g. To further refine your search, use the list of conjunctions AND, OR, NOT

AND , and NOT OR and the lists and text fields on the search criteria bar to add additional search criteria. Click + to add a search criterion to the LDAP Query field.Click X to delete a search criterion from the LDAP Query field. 7. When you have finished configuring the search criteria, click OK. The child entries that match the filter are shown under the selected entry. The filter is applied for first level children only, not for the entire subtree. Click the Refresh icon to remove the filter. Searching for Entries by Using Oracle Directory Services Manager To search for a directory entry: 1. Invoke Oracle Directory Services Manager as described in Invoking Oracle Directory Services Manager on page 7-9.

2. From the task selection bar, choose Data Browser.

3. To perform a simple keyword search, enter text in the field next to the Search icon to specify keywords to search for in the attributes cn, uid, sn, givenname, mail and initials.

4. Click the Simple Search arrow to the right of the text field or press the Enter key.

Search results, if any, are displayed below the data tree. Click the information icon to view information about this search. Click the Refresh the search results entries icon to refresh the results. Click the Close search result icon to dismiss the search.

5. To perform a more complex search, click Advanced. The Search Dialog appears.

6. In the Root of the Search field, enter the DN of the root of your search.

For example, suppose you want to search for an employee who works in the Manufacturing division in the IMC organization in the Americas. The DN of the root of your search would be: ou=Manufacturing,ou=Americas,o=IMC,c=US You would therefore type that DN in the Root of the Search text box. You can also select the root of your search by browsing the data tree. To do this: 13-4 Oracle Fusion Middleware Administrators Guide for Oracle Internet Directory

a. Click Browse to the right of the Root of the Search field. The Select

Distinguished Name DN Path: Tree View dialog box appears. b. Expand an item in the tree view to display its entries. c. Continue navigating to the entry that represents the level you want for the root of your search.

d. Select that entry, then click OK. The DN for the root of your search appears in

the Root of the Search text box in the right pane. 7. In the Max Results entries box, type the maximum number of entries you want your search to retrieve. The default is 200. The directory server retrieves the value you set, up to 1000.

8. In the Max Search Time seconds box, type the maximum number of seconds for

the duration of your search. The value you enter here must be at least that of the default, namely, 25. The directory server searches for the amount of time you specify, up to one hour.

9. In the Search Depth list, select the level in the DIT to which you want to search.

The options are: ■ Base : Retrieves a particular directory entry. Along with this search depth, you use the search criteria bar to select the attribute objectClass and the filter Present. ■ One Level : Limits your search to all entries beginning one level down from the root of your search. ■ Subtree : Searches entries within the entire subtree, including the root of your search. This is the default. 10. Set search criteria. Optionally, select Show LDAP filter, then type a query string directly into the LDAP Query text field. Alternatively, use the lists and text fields on the search criteria bar to focus your search. a. From the list at the left end of the search criteria bar, select an attribute of the entry for which you want to search. Because not all attributes are used in every entry, be sure that the attribute you specify actually corresponds to one in the entry for which you are looking. Otherwise, the search fails. b. From the list in the middle of the search criteria bar, select a filter. c. In the text box at the right end of the search criteria bar, type the value for the attribute you just selected. For example, if the attribute you selected was cn, you could type the particular common name you want to find. d. Click + to add this search criterion to the LDAP Query field.

e. To view the LDAP filter you have selected, select Show LDAP filter.

f. To further refine your search, use the list of conjunctions AND, OR, NOT

AND , and NOT OR and the lists and text fields on the search criteria bar to to add additional search criteria. Click + to add a search criterion to the LDAP Query field. Click X to delete a search criterion from the LDAP Query field. 11. Click Search. Search results, if any, are displayed below the data tree. If an LDAP error icon appears, mouse over it to see the error. Search again with different criteria, if necessary, to correct the error. Click the Search Filter icon to see

Dokumen yang terkait

Oracle Fusion Middleware Online Documentation Library

0 4 110

Oracle Fusion Middleware Online Documentation Library

0 1 210

Oracle Fusion Middleware Online Documentation Library

0 3 60

Oracle Fusion Middleware Online Documentation Library

0 5 76

Oracle Fusion Middleware Online Documentation Library

0 0 44

Oracle Fusion Middleware Online Documentation Library

0 0 70

Oracle Fusion Middleware Online Documentation Library

0 0 18

Oracle Fusion Middleware Online Documentation Library

0 0 152

Oracle Fusion Middleware Online Documentation Library

0 0 76

Oracle Fusion Middleware Online Documentation Library

0 1 74