Set the ACLs in Oracle Virtual Directory to support the OracleNetAdmins

19-34 Oracle Fusion Middleware Administrators Guide for Oracle Virtual Directory 1. Start the Oracle Virtual Directory server, then start Oracle Directory Services Manager, and then connect to the Oracle Virtual Directory server. 2. Create two new Local Store Adapters using the following settings. Refer to Creating Local Store Adapters on page 12-23 for information on creating Local Store Adapters. ■ Use the Local_Storage_Adapter template for each adapter. ■ The Adapter Suffix for a Local Store Adapter must be cn=OracleContext and the Adapter Suffix for the other of the Local Store Adapters must be cn=OracleSchemaVersion. ■ The Database File and Backup File fields for each of the adapters must be unique. 3. Update and load the entries into the Local Store Adapters by extending the Oracle Virtual Directory schema with the loadOVD.ldif file using the following command. The loadOVD.ldif file contains entries for Oracle Context and schemaversion that Net Services queries. The loadOVD.ldif file is located in the ORACLE_HOME ovdeus directory. ORACLE_HOME binldapmodify -h Oracle_Virtual_Directory_Host –p OVD_Port \ -D bindDN -q -v -a -f loadOVD.ldif 4. Create an LDAP Adapter for Net Services using the following settings and by entering the Oracle Directory Server Enterprise Edition host information, including host name, non-SSL port number, proxy DN and password, and the appropriate Remote Base and Mapped Namespace. Refer to Creating LDAP Adapters on page 12-3 for information on creating LDAP Adapters. ■ Use the ONames_Sun adapter template. ■ Select the BindOnly Pass Through Credential option. 5. Update the Access Control Lists by performing the following steps. If you have customized your ACLs after installing Oracle Virtual Directory, you must adjust the following ACL settings to include your customizations. a. Create the following ACLs. Refer to Creating Access Control Lists Using Oracle Directory Services Manager on page 16-1 for information on creating ACLs: Target DN cn=OracleContext Scope subtree Applies To Entry Grant Browse DN and Return DN Access Public Target DN cn=OracleContext Scope subtree Applies To All Attributes Grant Search and Read Access Public Configuring Oracle Virtual Directory for Integrated Directory Solutions 19-35

b. Set the ACLs in Oracle Virtual Directory to support the OracleNetAdmins

administrative group as follows: Target DN cn=OracleSchemaVersion Scope subtree Applies To Entry Grant Browse DN and Return DN Access Public Target DN cn=OracleSchemaVersion Scope subtree Applies To All Attributes Grant Search and Read Access Public Target DN Your Mapped Namespace in Oracle Virtual Directory, for example: dc=example,dc=com Scope subtree Applies To Entry Grant Browse DN and Return DN Access Public Target DN Your Mapped Namespace in Oracle Virtual Directory, for example: dc=example,dc=com Scope subtree Applies To All Attributes Grant Search and Read Access Public Target DN cn=OracleContext,YOUR MAPPED ORACLE VIRTUAL DIRECTORY NAMESPACE Scope subtree Applies To Entry Grant All Access Group with DN of: cn=OracleNetAdmins,cn=OracleContext,YOUR MAPPED ORACLE VIRTUAL DIRECTORY NAMESPACE Target DN cn=OracleContext,YOUR MAPPED ORACLE VIRTUAL DIRECTORY NAMESPACE