12-22 Oracle Fusion Middleware Administrators Guide for Oracle Virtual Directory – Enter the user name that the Database Adapter should use to connect the database in the Database User field. – Enter the password for the user name you entered in the Database User field in the Password field. Oracle Virtual Directory replaces the value you enter in this field with a reversible masked value upon startup. The following fields appear in the Settings section of the General tab: Ignore Modify Objectclass Since objectclasses in the database are logical objects and do not map directly to a table column in the mapping, modifications to the objectclass attribute can cause errors. If the Ignore Modify Objectclasses option is enabled, the Database Adapter removes any references to the objectclass attribute so that errors are not be sent to the client application, that is, they are ignored. If the Ignore Modify Objectclasses option is not selected, error messages are sent to the client application Include Object Class Super Classes This setting causes the Database Adapter to list objectclass parent classes along with the main objectclass in the objectclass attribute. Disable this setting when you want to emulate Microsoft Active Directory server schema. For most scenarios, it is useful to enable this setting so that objectclass=xxx queries can be executed against parent objectclass values. Enable Case Insensitive Search Enabling selecting the Enable Case Insensitive Search option makes the search case insensitive for case insensitive LDAP attributes, such as uid. Oracle Virtual Directory uses UPPER in the SQL query when Enable Case Insensitive Search is enabled. If the database cannot maintain functional indexes, such as for Oracle TimesTen or MySQL databases, then you should disable the Enable Case Insensitive Search option. When the Enable Case Insensitive Search is disabled, Oracle Virtual Directory performs case sensitive searches and does not use UPPER in the SQL query. The default value for Enable Case Insensitive Search is Enable. Maximum Connections This setting defines the maximum connections the Database Adapter may make with the database. Connection Wait Timeout This setting determines how much time in seconds the Database Adapter should wait before timing-out when trying to establish a connection with the database. The following fields appear in the DBLDAP Mapping section of the General tab: Used Database Tables This field displays the database tables the Database Adapter is set to use. To add a database table, click the Add button, navigate to the table file, select it and click OK. The following fields appear in the Object Classes section of the General tab: Object Classes This field displays object classes and their RDNs that map to the database tables. To add an Object Class Mapping, click the Create button, select the appropriate object class from the Object Class list, enter an RDN value for the object class in the RDN field, and click OK. Creating and Configuring Oracle Virtual Directory Adapters 12-23

12.2.3.2 Configuring Adapter Routing

After you create the adapter you can configure routing for the adapter by clicking the adapter name in the Adapter tree, clicking the Routing tab, and referring to Understanding Routing Settings on page 3-3.

12.2.3.3 Configuring Adapter Plug-ins and Mappings

After you create the adapter you can apply Plug-ins and Mappings to the adapter by clicking the adapter name in the Adapter tree, clicking the Plug-Ins tab, and referring to Managing Adapter Plug-ins on page 13-1 and Applying Mappings to Adapters on page 14-3.

12.3 Creating Local Store Adapters

This topic explains how to create and configure Local Store Adapters and includes the following sections: ■ Configuring Local Store Adapters Perform the following steps to create Local Store Adapters using Oracle Directory Services Manager: 1. Log in to Oracle Directory Services Manager.

2. Select Adapter from the task selection bar. The Adapter navigation tree appears.

3. Click the Create Adapter button. The New Adapter Wizard appears.

4. Perform the following steps to define the Type of adapter:

a. Select Local Store from the Adapter Type list.

b. Enter a unique name for the Local Store Adapter in the Adapter Name field. The adapter name value is used in other configuration fields that must reference the adapter. c. Select an adapter template from the Adapter Template list by referring to Understanding Adapter Templates on page 2-28. Use the Default template if you are unsure which template to use.

d. Click Next. The Settings screen appears.

5. Enter a valid base DN in DN format in the Adapter SuffixNamespace field. This field defines the root DN that the adapter provides information for. The DN defined, and the child entries below it, comprise the adapter’s namespace. The value you enter in this field should be the base DN value for returned entries. For example, if you enter dc=mydomain,dc=com in the field, all entries end with dc=mydomain,dc=com. 6. Select the Create Adapter Suffix option to create a base entry in the Local Store Adapter using the value specified in the Adapter SuffixNamespace field. Note: After selecting an adapter template, Oracle Directory Services Manager populates default values for some adapter settings. You should alter these default settings according to your environment. 12-24 Oracle Fusion Middleware Administrators Guide for Oracle Virtual Directory 7. Enter the path, relative to the Oracle Virtual Directory installation, and a unique file name prefix for the Local Store Adapter data files in the Database File field. For example, a valid name may be datalocalDB. If you are using multiple Local Store Adapters, this value must be unique for each adapter or data-corruption occurs. 8. Enter the size for the Local Store Adapter cache in the Cache Size field. The Cache Size option determines the number of entries the Local Store Adapter will cache, which always contains the last entries accessed or written. The size of the entries determines how much memory you need. 9. Select the password hash type by choosing an option from the Password Hash Mode list. The most secure algorithm is SSHA, however, others are available for compatibility purposes. Selecting PLAIN leaves the password valued un-hashed in the internal Local Store Adapter data store. 10. Enter the path, relative to the Oracle Virtual Directory installation, and a unique file name in the Backup File field in which automatic backups should be stored. For example, a valid backup file may be backuplocalDB. The backup file name should be unique to the Local Store Adapter to prevent being over-written by another Local Store Adapter. 11. Enter the hour 0 to 23 in the Backup Time - Hour field to set the hour of the time at which the Local Store Adapter automatic backup should occur. 12. Enter the minute 0 to 59 in the Backup Time - Minute field to set the minute of the time at which the Local Store Adapter automatic backup should occur. 13. Enter the maximum number of backup files in the Max Backup Files field to keep in the backup file rotation for the Local Store Adapter.

14. Click Next. The Summary screen appears listing the settings for the Local Store

Adapter.

15. Review the Local Store Adapter settings and click Finish to create the Local Store

Adapter. The new Local Store Adapter appears in the Adapter tree. After you create the Local Store Adapter you can configure it using the procedures in Configuring Local Store Adapters .

12.3.1 Configuring Local Store Adapters

This section describes how to configure Local Store Adapter settings, including: ■ Configuring Local Store Adapter General Settings ■ Configuring Adapter Routing Note: If you enable the Create Adapter Suffix option, an Objectclass screen appears after you click Next on the Settings screen. When the Objectclass screen appears, select an Objectclass for the base entry in the Local Store Adapter. Note: Storing very large entries, for example, groups or binary objects, this may cause Oracle Virtual Directory to consume more memory than normal. You may have to increase the overall memory available to the Oracle Virtual Directory. Creating and Configuring Oracle Virtual Directory Adapters 12-25 ■ Configuring Adapter Plug-ins and Mappings

12.3.1.1 Configuring Local Store Adapter General Settings

After you create the Local Store Adapter you can configure the general settings for the adapter by clicking the adapter name in the Adapter tree, clicking the General tab, setting values for the following fields, and clicking Apply: Root This field defines the root DN that the adapter provides information for. The DN defined, and the child entries below it, comprise the adapter’s namespace. The value you enter in this field should be the base DN value for returned entries. For example, if you enter dc=mydomain,dc=com in the field, all entries end with dc=mydomain,dc=com. Active An adapter can be configured as active enabled or inactive disabled. An adapter configured as inactive does not start during a server restart or an attempted adapter start. Use the inactive setting to keep old configurations available or in stand-by without having to delete them from the configuration. The default setting is active. Read-Only If you enable the Read-Only option the adapter does not accept modify transactions and is available for searching only. The default setting is disabled, that is, the adapter is in readwrite mode. The following fields appear in the Indexes section of the General tab: Presence The Presence field contains a list of attribute types whose presence in entries must be quickly identified, which is required for attrname= style search filters to operate. To add an attribute to the list, click Add, select the attribute from the dialog box that appears, and click OK on the dialog box. Exact The Exact index field contains a list of attributes for supporting searches for exact match index, for example, sn=smith. When using the ordering index, this index is redundant. To add an attribute to the list, click Add, select the attribute from the dialog box that appears, and click OK on the dialog box. Ordering The Ordering field contains a list of attributes for enabling ordering searches, such as, sn=Smith, exact searches, and initial substring searches, such as, sn=Smi. LDAP filters allow only = and = ordering relationships. and are not supported in LDAPv3. To add an attribute to the list, click Add, select the attribute from the dialog box that appears, and click OK on the dialog box. Substring The Substring option is only necessary if final substring searches are necessary, for example, sn=ith, in addition to the ordering index. Initial substring searches are often handled using the ordering index. To add an attribute to the list, click Add, select the attribute from the dialog box that appears, and click OK on the dialog box. Search Un-indexed Enables or disables low-performance searching of attributes that are not specifically indexed. If search un-indexed is disabled, searching an un-indexed attribute returns no results that is, evaluates as false.