7-14 Oracle Fusion Middleware Administrators Guide for Oracle Internet Directory ldapsearch -b cn=subschemasubentry -s base objectclass= -p 3060 \ -D cn=orcladmin -q This book contains many examples of LDAP tool use. For security reasons, avoid supplying a password on the command line whenever possible. A password typed on the command line is visible on your screen and might appear in log files or in the output from the ps command. When you supply a password at a prompt, it is not visible on the screen, in ps output, or in log files. Use the -q and -Q options, respectively, instead of the -P password and -w password options. The LDAP tools have been modified to disable the options -w password and -P password when the environment variable LDAP_PASSWORD_PROMPTONLY is set to TRUE or 1. Use this feature whenever possible. Using Bulk Tools Oracle Internet Directory provides several tools to help you manage large numbers of entries. See Chapter 15, Performing Bulk Operations. Using WLST The Oracle WebLogic Scripting Tool WLST is a Jython-based command-line scripting environment that you can use to manage and monitor WebLogic Server domains. To use it to manage and monitor Oracle Internet Directory, you must navigate to the custom MBean tree where Oracle Internet Directory is located. Then you can list, get values, and change values of the managed beans MBeans that represent Oracle Internet Directory resources. See Managing System Configuration Attributes by Using WLST on page 9-14 and Configuring SSL by Using WLST on page 26-8. See Also: ■ Managing Entries by Using LDAP Command-Line Tools on page 13-11. ■ The chapter Oracle Internet Directory Data Management Tools in Oracle Fusion Middleware Reference for Oracle Identity Management for a detailed description of each tool. See Also: Using Passwords with Command-Line Tools in Oracle Fusion Middleware Reference for Oracle Identity Management. See Also: The chapter Oracle Internet Directory Data Management Tools in Oracle Fusion Middleware Reference for Oracle Identity Management for a detailed description of each tool. Note: WLST manages Oracle Internet Directory through its SSL port. The Oracle Internet Directory SSL port must be configured for no authentication or server authentication. If the Oracle Internet Directory SSL port is configured for mutual authentication, you will not be able to change Oracle Internet Directory parameters. by using WLST. See SSL Authentication Modes on page 26-3. Getting Started With Oracle Internet Directory 7-15 Basic Tasks for Configuring and Managing Oracle Internet Directory The following provides a summary of the steps you must take to configure and manage a basic Oracle Internet Directory environment: 1. Start and stop the LDAP server. See Chapter 8 2. Manage system configuration attributes. See Chapter 9 . 3. Manage directory entries. See Chapter 13 . 4. Manage directory schema. See Chapter 20 . 5. Configure auditing. Chapter 22 . 6. Manage log files. See Chapter 23 . 7. Configure SSL. See Chapter 26 . 8. Configure password policies. See Chapter 28 . 9. Configure access control. See Chapter 29 . 10. Get sizing and tuning recommendations for Oracle Internet Directory deployments. See the Obtaining Recommendations by Using the Tuning and Sizing Wizard section of the Oracle Internet Directory chapter in Oracle Fusion Middleware Performance and Tuning Guide. 11. Set up replication. See Chapter 38 and Appendix C . 12. Convert an Advanced Replication-based replication agreement to an LDAP-based replication agreement. See Converting an Advanced Replication-Based Agreement to an LDAP-Based Agreement on page 38-15. 13. Modify an existing replication setup. See Chapter 41 . This guide describes other tasks that you might need to perform, depending on your Oracle Fusion Middleware environment.