Managing Directory Synchronization Profiles 7-3 ■ SSL Settings : Specify whether to enable or disable SSL settings. If you enable SSL Settings, the root certificates of the target directory must be in the Oracle Directory Integration Platform keystore to successfully connect or test the connection to the target directory. ■ User Name : Specify the account to be used by the connector agent for accessing the connected directory. For example, if the connected directory is a database, then the account might be Scott. If the connected directory is another LDAP-compliant directory, then the account might be cn=Directory Manager. ■ Password : Specify the password the connectoragent is to use when accessing the connected directory. ■ Test Connection : Use the Test Connection function to test the connection to the source host. Mapping The Mapping tab allows you to configure Domain and Attribute Mapping Rules, and Domain and Attribute Exclusion Lists for the profile. Domain Mapping Rules are for the domain or container from which objects are synchronized into Oracle Internet Directory. The Domain Exclusion List identifies domains to be excluded during bootstrap and synchronization. Attribute Mapping Rules are for attributes of the objects that are being managed. The Attribute Exclusion List identifies attributes to be excluded during bootstrap and synchronization. To create a mapping rule or exclusion list, click Create for the type of mapping rule or exclusion list you want to create, enter values for the parameters, and then click OK at the top of the Create Synchronization Profile page. The following is a list and description of the Domain Mapping Rules parameters: ■ Source Container or Destination Container: If you are configuring an import profile, this parameter will be labeled Source Container. If you are configuring an export profile, this parameter will be labeled Destination Container. The parameter identifies the name of the sourcedestination container fromto which the objects are synchronized. Enter a value of NONLDAP if you a synchronizing with a non-LDAP source. ■ DIP-OID Container : The DIP-OID label refers to the Oracle Internet Directory that is one end-point for synchronization and provisioning. The name of the destination container into which the objects are synchronized. Enter a value of NONLDAP if you a synchronizing with a non-LDAP source. ■ DN Mapping Rule : The specific mapping rule that determines how entries from the source container are mapped to the destination container. The following is a list and description of the Domain Exclusion List parameters: ■ Source Container to Exclude : This parameter appears if you are configuring an import profile. Identify the domains to be excluded during bootstrap and synchronization for by entering a value, for example, Note: Use the Validate All Mapping Rules button at the top of the Create Synchronization Profile page to test your mapping rules after you create them. If your mapping rules are not valid, you cannot use the profile. 7-4 Oracle Fusion Middleware Administrators Guide for Oracle Directory Integration Platform OU=myou,OU=test,DC=mycompany,DC=com, or by clicking Lookup and browsing to the domain, and then clicking OK in the Create Domain Exclusion Container dialog box. ■ DIP-OID Container to Exclude : This parameter appears if you are configuring an export profile. Identify the domains to be excluded during bootstrap and synchronization for by entering a value, for example, OU=myou,OU=test,DC=mycompany,DC=com, or by clicking Lookup and browsing to the domain, and then clicking OK in the Create Domain Exclusion Container dialog box. The following is a list and description of the Attribute Mapping Rules parameters: ■ Source Object Class : Select the object class in the source directory. Do not select a value when synchronizing with a non-LDAP source. ■ Source Attributes : The source directory attributes to which you want to apply the mapping rule. When synchronizing with LDAP sources, select the Single Attributes option and enter the appropriate attributes in the Attributes field. When synchronizing with non-LDAP sources, select the Multiple Attributes option and enter the appropriate attributes in the Multivalue Attributes field. ■ Source Attribute Required : Enable or disable the source attribute requirement. ■ DIP-OID Object Class : Select the destination object type or class. Use the destination object class for LDAP targets. ■ DIP-OID Attribute : Select the destination attribute name to which you want to apply the mapping rule. ■ DIP-OID Attribute Type : Enter the type of the attribute in the destination directory. ■ Mapping Expression : Enter the transformation rule that derives the destination attribute value from the source attribute value. The following is a list and description of the Attribute Exclusion List parameters: ■ ObjectClass : Select the objectclass that contains the attributes you want to add to the Attribute Exclusion List. After you select an objectclass, its attributes appear in the Multiple Address field. ■ Attributes : Select the attributes you want to add to the Attribute Exclusion List. Filtering The Filtering tab contains the following parameters that configure the filter settings for the profile: ■ Source Matching Filter : Specify the attribute that uniquely identifies an entry in the connected directory or specify an LDAP search filter for the connected directory in the format searchfilter=ldap_search_filter. ■ Destination Matching Rule : Specify the attribute that uniquely identifies records in Oracle Internet Directory. This attribute is used as a key to synchronize Oracle Internet Directory with the connected directory. ■ Associated Profile : The Associated Profile filtering setting is used to avoid loop back changes in bi-directional synchronization where changes initiated from one directory return to the same directory. For import profiles, specify the export profile it is associated with in the Associated Profile field. For export profiles, specify the import profile used for synchronizing the data from that directory.