Specify the object classes for the new entry. Click the Add icon and use the Add
4. To edit the RDN, select the Edit RDN icon above the Data Tree. Alternatively, you
can select the entry in the Data Tree, right click, and select Edit RDN. Specify the new RDN value. For a multivalued RDN you can use the Delete Old RDN checkbox to specify whether the old RDN should be deleted. Select OK to save the change or Cancel to abandon the change. 5. To add an object class:a. Click the Attributes tab.
b. Click the Add icon next to objectclass and use the Add Object Class dialog
to select object class entries. Optionally, use the search box to filter the list of object classes. To add the object class, click it and then click OK. 6. To delete an object class,a. Click the Attributes tab.
b. Select the object class you want to delete.c. Click the Delete icon next to objectclass. The Delete Object Class dialog
lists the attributes that will be deleted with that class.d. Click Delete to proceed or Cancel to cancel the deletion.
7. If the entry is a person, click the Person tab and use it to manage basic user
attributes. Click Apply to save your changes or Revert to discard them. If the entry is a group, see Managing Group Entries by Using Oracle Directory Services Manager on page 14-8.8. If this is a person entry, you can upload a photograph. Click Browse, navigate to
the photograph, then click Open. To update the photograph, click Update and follow the same procedure. Click the Delete icon to delete the photograph. 9. To modify the values of attributes that are not specific to a person or group, click the Attributes tab in the right pane and make the desired changes. By default, only non-empty attributes are shown. You can switch between Managed Attributes and Show All by using the Views list. 10. To change the list of attributes shown as managed attributes, click the icon under Optional Attributes . Select attributes you want to move from the All Attributes list to the Shown Attributes lists and use the Move and Move All arrows to move the attributes. Select attributes you want to move from the shown Attributes list to the All Attributes lists and use the Remove and Remove All arrows to move the attributes. Click Add Attributes to make your changes take effect or click Cancel to discard your changes. After you click Add Attributes, only the attributes that were on the Shown Attributes list are shown in the Managed Attributes view. 11. Specify values for the optional properties. You can also modify the values of the mandatory properties. For multivalued attributes, you can use the Add and Delete icons to add and delete multiple values.12. When you have completed all your changes, click Apply to make them take effect.
Alternatively, click Revert to abandon your changes. 13. You can set an access control point ACP on this entry by using the Subtree Access and Local Access tabs. The procedures are described in Adding or Modifying an Managing Directory Entries 13-11 ACP by Using the Data Browser in ODSM on page 29-21 and Setting or Modifying Entry-Level Access by Using the Data Browser in ODSM on page 29-21. Managing Entries by Using LDAP Command-Line Tools This section contains the following topics: ■ Listing All the Attributes in the Directory by Using ldapsearch ■ Listing Operational Attributes by Using ldapsearch ■ Attribute Case in ldapsearch Output ■ Adding a User Entry by Using ldapadd ■ Modifying a User Entry by Using ldapmodify ■ Adding an Attribute Option by Using ldapmodify ■ Deleting an Attribute Option by Using ldapmodify ■ Searching for Entries with Attribute Options by Using ldapsearch Listing All the Attributes in the Directory by Using ldapsearch Use the following command line to list of all the attributes, including those that do not have values: ldapsearch -p port -h host -D cn=orcladmin -q -b cn=subschemasubentry \ -s base objectclass= Listing Operational Attributes by Using ldapsearch By default, ldapsearch does not return operational attributes. If you add the character + to the list of attributes in the search request, however, ldapsearch returns all operational attributes. Searching for an entry with + returns only operational attributes. For example: ldapsearch -h adc2190517 -p 3060 -D cn=orcladmin -w welcome -b c=uk -L -s base objectclass= + dn: c=UK orclguid: 8EB5730F5852DECBE040E80A7452694E creatorsname: cn=orcladmin createtimestamp: 20100826065339z modifytimestamp: 20100826065339z modifiersname: cn=orcladmin orclnormdn: c=uk By comparison, a search with but not + returns all user attributes: ldapsearch -h adc2190517 -p 3060 -D cn=orcladmin -w welcome -b c=uk -L -s base objectclass= dn: c=UK c: uk objectclass: top objectclass: countryParts
» Oracle Fusion Middleware Online Documentation Library
» Configure Without Domain Oracle Fusion Middleware Online Documentation Library
» Select Non-SSL or SSL from the Port Type list.
» Select OID or OVD from the Directory Type list.
» Click Validate to verify your directory connection details.
» Click Apply to apply your selections.
» Click the small arrow to the right of the label Click to connect to a directory. It
» To reconnect to a live connection, click it.
» Optionally, enter an alias name to identify this entry on the Disconnected
» Enter the server and non-SSL port for the Oracle Internet Directory or Oracle
» Deselect SSL Enabled. Oracle Fusion Middleware Online Documentation Library
» After changing the configuration, choose Apply.
» Click Apply. Oracle Fusion Middleware Online Documentation Library
» Select Data Sources - schedulerDS - Connection Pool.
» Click Lock Edit in the top left corner of the screen.
» Enter the new password in the Password and Confirm Password fields.
» If desired, mouse over each icon in the tool bar to read the icons action.
» Click + to add this search criterion to the LDAP Query field.
» To view the LDAP filter you have selected, select Show LDAP filter.
» To further refine your search, use the list of conjunctions AND, OR, NOT
» From the task selection bar, choose Data Browser.
» Click the Simple Search arrow to the right of the text field or press the Enter key.
» To perform a more complex search, click Advanced. The Search Dialog appears.
» Click Browse to the right of the Root of the Search field. The Select
» Select that entry, then click OK. The DN for the root of your search appears in
» In the Max Search Time seconds box, type the maximum number of seconds for
» Click + to add this search criterion to the LDAP Query fiel
» Click the Import LDIF icon. The Import File dialog appears.
» Enter the path to the LDIF file you want to import, or click Browse and navigate to
» Click the Export LDIF icon. The Export File dialog appears. Select Export
» Click OK. The Download LDIF File dialog appears. By default, the entries are
» Invoke Oracle Directory Services Manager and connect to the Oracle Internet
» From the task selection bar, select Data Browser.
» On the toolbar, select the Create a new entry icon. Alternatively, right click any
» Specify the object classes for the new entry. Click the Add icon and use the Add
» To add an owner to the group, click the Add icon next to the Owner box.
» Select Administration, then Server Properties from the Oracle Internet Directory
» Select General. Oracle Fusion Middleware Online Documentation Library
» Choose Read-only for Server Mode.
» Create a sample LDIF file, My_file.ldif, with the following entries:
» Add these entries to the directory by using the following command:
» Click Apply to apply this constraint or Revert to revert to the state before you
» Select Advanced from the task selection bar.
» Expand Attribute Uniqueness in the left pane.
» If you want to enable the constraint now, click Enable Unique Attribute.
» Click Apply to apply this change or Revert to revert to the state before you
» Choose the Delete icon, then, when prompted, confirm the deletion. The entry you
» Click Apply to apply this change or Revert to revert to the state before you deleted
» Restart the directory server to effect this change.
» Click the object class you want to modify. The Object Class tab appears on the
» To add or delete a superclass or attribute, select it in the Superclass, Mandatory
» Choose Apply in the Object Class page to apply changes, or Revert to abandon
» Click + next to Object Classes to expand the Object Classes panel. Use the scroll
» In the New Attribute Type dialog box, select the Indexed box.
» From the task selection bar, choose Schema.
» In the left pane, expand the Content Rules list.
» Choose Apply to make the changes effective or choose Revert to abandon the
» Expand the Matching Rules list. Matching rules are shown in the list.
» You can search for a matching rule by entering a keyword in the search field, in the
» Select a matching rule to see its details in the matching rule tab page on the right.
» Expand the Syntaxes list. Syntax names are shown in the list.
» Select Administration, then Shared Properties from the Oracle Internet Directory
» Choose Apply. Oracle Fusion Middleware Online Documentation Library
» From the Oracle Internet Directory menu, select Security, then Audit Policy
» From the Audit Policy list, select Custom to configure your own filters, or one of
» If you want to audit only failures, click Select Failures Only.
» To configure a filter, click the Edit icon next to its name. The Edit Filter dialog for
» Specify the filter condition using the buttons, selections from the menus, and
» To add a condition, click the Add icon.
» When you have completed the filter, click Apply to save the changes or Revert to
» Select the General tab. Add the users distinguished name to User DN. This adds the users DN to the
» Click Submit. Oracle Fusion Middleware Online Documentation Library
» From the task selection bar, select Security.
» Expand Password Policy in the left pane. All of the password policies appear in
» Select a password policy to display its information in the right pane.
» In the General tab page, modify the editable attribute fields as needed.
» Select the Account Lockout tab page and, to modify the fields, select Global
» Select the IP Lockout tab page and, to modify the fields, select IP Lockout. Modify
» Select the Password Syntax tab page and, to modify the fields, select Check
» Select the Effective Subtree tab page to modify the subtree to which the policy
» When you are finished, choose Apply.
» To create a new policy, select Create. Alternatively, select an existing password
» To assign the password policy to a subtree, select the Effective Subtree tab page,
» Click Access Control in the left pane. All of the defined access control points
» The Subtree Access Items section of the page shows the access controls on this
» Click Access Control in the left pane. All of the defined ACPs appear in the left
» In the left pane, click the Create Access Control Policy Point icon. The New
» Enter the path to the entry you want to create, or click Browse, select a DN, and
» From the Authentication Choice list under Bind Mode, select the type of
» Select the Access Rights tab page.
» Click OK. The structural access item you just created appears in the list.
» Select the Attribute tab page.
» Click OK. The content access item you just created appears in the list.
» To modify an existing content access item, select the item and click Edit. The
» After you have made the changes, click Apply.
» Expand Password Verifier in the left pane. All of the password verifiers appear in
» Creates an identity management realm
» Grants certain deployment privileges to various groups—for example, the Oracle
» Adds the administrators to those privileged groups
» The end user sends to the application or middle tier a request containing a query
» The application or middle tier binds to the directory.
» The application or middle tier performs a second bind, this time using the DN of
» The directory server recognizes this second bind as an attempt by the application
» The garbage collection engine triggers the corresponding background database
» From the task selection bar, select Advanced.
» Expand Garbage Collection in the left pane, then select the garbage collector you
» In the Garbage Collector window, enter the changes you want to make for this
» Click OK to enable the configuration changes or click Cancel to abandon the
» Create an LDIF file to manually add the user and group containers. To determine
» Set the Oracle Internet Directory server debug logging level, as described in
» Modify the Oracle Internet Directory server chaining debugging settings. For both
» On the Type screen, select the replication type: One Way Replication, Two Way
» Click Next to go the Settings page.
» In the LDAP Connection field, select Keep Alive if you want the replication server
» Enter the Human Intervention Queue Schedule. This is the interval, in seconds,
» If you have specified Two Way Replication or Multimaster Replication as the
» Click Next to go to the Scope page. The default primary naming context is filled
» To create another primary naming context, click the Create Primary Naming
» To exclude a secondary naming context, click the Add icon below the Excluded
» To exclude an attribute, click the Add icon below the ExcludedAttributes field.
» Click OK. The primary naming context is now listed on the Scope page.
» Click Next. The Summary page displays a summary of the replication agreement
» Click Finish to create the replication agreement.
» Edit the example file mod.ldif as follows:
» Create an LDIF file similar to this:
» Apply the LDIF file by typing:
» Choose Administration, then Server Properties from the Oracle Internet
» Select or deselect Enable Change Log Generation.
» Expand Change Log if it is not already expanded. The left panel lists the last 500
» Select a change to view its properties.
» From the Oracle Internet Directory menu on the home page, select
» You are prompted to log into the replication DN account. Provide the host, port,
» The Replication Agreements page lists information about each replication
» On the Scope tab, you can change the scope settings.
» Enter the Human Intervention Queue Schedule. This is the interval, in
» To delete a replication agreement, select the agreement and click the Delete icon.
» Select Replication Log. Oracle Fusion Middleware Online Documentation Library
» Write a user-defined plug-in procedure in PLSQL or Java.
» Click the Delete icon. The plug-in entry you deleted no longer appears in the list.
» When you add an Oracle Database Advanced Replication-based replica, the new
» The sponsor node for each Oracle Database Advanced Replication-based replica
» An Oracle Database Advanced Replication-based replica cannot be a consumer of
» Configure sqlnet.ora. Oracle Fusion Middleware Online Documentation Library
» Configure tnsnames.ora in each Oracle Internet Directory ORACLE_
» Stop and restart the listener, both in the Oracle Internet Directory ORACLE_
» Test Oracle Net connections to all nodes from each node in the DRG.
» A change request is made on the Oracle Internet Directory server of Replica A.
» The change is accepted and committed to storage in the Oracle Internet Directory
» Prepare a modification file, mod.ldif. For example, to change to host
» In the left pane of the WebLogic Server Administration Console, click Lock Edit
Show more