Skip Headers
Oracle® Fusion Middleware Administrator's Guide for Oracle Internet Directory
11g Release 1 (11.1.1)

Part Number E10029-06
Go to Documentation Home
Home
Go to Book List
Book List
Go to Table of Contents
Contents
Go to Master Index
Master Index
Go to Feedback page
Contact Us

Go to previous page
Previous
PDF · Mobi · ePub

Index

A  B  C  D  E  F  G  H  I  J  K  L  M  N  O  P  Q  R  S  T  U  V  W  X 

Symbols

+ in search request, 13.3.2

Numerics

3DES value of orclpwdverifierparams
generating dynamic verifiers, 31.7

A

abstract object classes, 3.5.2.3, 3.5.2.3, 3.5.2.3
superclasses of, 21.1.2.1
top, 3.5.1
access
exclusionary, 30.1.4.3
granting
by using ODSM, 30.2
entry-level, by using ODSM data browser, 30.2.5
kinds, 30.1.2.3
level requirements for LDAP operations, 30.1.3
operations, 30.1.2.3
read-only
granting by using ldapmodify command, 30.3.7
rights, setting by using ODSM access control, 30.2.2.2, 30.2.2.3
selecting, by DN
by using ldapmodify command, 30.3.5
subject, 30.1.2.2
unspecified, 30.1.2.3
access control, 30
and authorization, 3.7
bind IP filter, 30.1.2.2
conceptual discussion, 30.1
default, 32.1.3
defined, 3.7
directive format. See ACI directive format
information, described, 30.1
information, format and syntax, H
management constructs, 30.1.1
managing, 30
by using command-line tools, 30.3
by using ODSM, 30.2, 30.2
policies
conflicting, 30.1.1.1
inheriting, 30.1.1.1
policy administration, introduction, 30.1
prescriptive, 30.1.1.2
setting by using wildcards, 30.3.4
access control lists, 3.2
See also ACLs
access control policy points
defined, 3.1.4
groups, 30.1.1.4.1
See also ACPs
account lockout
enforced by password policies, 29.1.4
accounts
disabling, 12.2.1
enabling and disabling
by using command-line tools, 12.2.1
by using Oracle Internet Directory Self-Service Console, 12.3.1
managing, 12
privileged, 12.1
unlocking
by using command-line tools, 12.2.2
by using Oracle Internet Directory Self-Service Console, 12.3.2
realm administrator, 34.1.5
superuser, 29.1.4
ACIs
components, 30.1.2
content, 30.1
defined, 30.1
entry level
setting up by using ldapmodify command, 30.3.3
more than one for the same subject, 30.1.4.2
object of directives, 30.1.2.1
representation, 30.1
restricting kinds users can add, 30.3.1
See access control items
subject of directives, 30.1.2.2
ACL evaluation
how it works, 30.1.4
ACLs
directives, within entries, 30.1.1.3
for groups, 30.1.4.4
precedence rules, 30.1.4.1
See access control lists
within subtrees, 30.1.1.2
ACPs
adding
by using ldapmodify command, 30.3.2
by using ODSM access control, 30.2.2
by using ODSM Data Browser, 30.2.4
defined, 30.1
groups, 30.1.1.4.1
modifying
by using ODSM access control, 30.2.3
by using ODSM Data Browser, 30.2.4
multiple, 30.1.1.1, 30.1.1.1
See also access control policy points
viewing
by using ODSM access control, 30.2.1
activate replication, 42.2.1, 43.2.7, 43.3.7
active server instances
viewing, 8.2.1
by usingopmnctl command, 8.3.6
added_object_constraint filter, 30.3.1
added-object-constraint, in access control, 30.1.2.2.4
adding attributes
by using ldapmodify command, 21.3.6
adding attributes to object classes by using ldapmodify command, 21.3.3
adding indexes by using ODSM, 21.2.11
adding object classes
by using ODSM, 21.2.2
adding object classes by using ldapmodify command, 21.3.2
addresses
IP, 10.1
Advanced Replication
adding a new node for, C.2.3
architecture, D.2
change logs, D.2
configuring
by using Replication Management Tool, C.2.2.3
sqlnet.ora, C.2.2.3.1
tnsnames.ora, C.2.2.3.1
deleting a node, C.2.4
Directory Replication Group, C.2.1
DRG, C.2.1
filtering, C.1.2
installing and configuring, C.2, C.2.2
nodes
adding, C.2.3
deleting, C.2.4, C.2.4
preparing the Oracle Net Services environment for, C.2.2.3.1, C.2.2.3.1
replication groups (DRGs), C.2.2
configuring, C.2.2
Advanced Replication groups
setting up, C.2.2
AL32UTF8 character set, S.1.1, S.1.3.2
alias entries, 18.1
adding by using ldapadd command, 18.2
defined, 18.1
dereferencing, 18.1
messages, 18.5
modifying by using ldapmodify command, 18.4
searching directory with, 18.3
aliases
attributes with
adding by using ldapmodify command, 21.3.10
alphabetic characters
password policy attribute, 29.1.5
anonymous authentication, 33.1.1, 33.1.1
anonymous binds, 9.2.1
default behavior, 33.6
limited operations on root DSE, 33.6
managing
by using Fusion Middleware Control, 33.7.1
by using ldapmodify command, 33.7.2
application-specific repositories
migrating data from, 37.3
apply attribute, 43.1.2
apply threads per supplier, 42.2.1
architecture
Oracle Internet Directory, 1.3.1, 3, 3.1
Oracle Internet Directory Server Manageability framework, 25.1.2
attribute aliases, 21.1.5
delete by using ldapmodify command, 21.3.12
using with ldapadd, 21.3.13.2
using with ldapdelete, 21.3.13.4, 21.3.13.4
using with ldapmoddn, 21.3.13.5, 21.3.13.5
using with ldapmodify, 21.3.13.3, 21.3.13.3
using with ldappadd, 21.3.13.2
using with ldapsearch, 21.3.13.1, 21.3.13.1
attribute mapping
in server chaining, 38.3.3
attribute name in search request
case, 9.2.1
attribute options, 3.4.6
adding
by using ldapmodify, 13.3.6
conceptual discussion, 3.4.6
deleting by using ODSM, 13.3.7
language codes, 3.4.6
searching for by using ldapsearch, 13.3.8
attribute selectors, 30.3.6
attribute uniqueness
defined, 19.1
rules for creating, 19.3
attribute uniqueness constraint
example, 19.5.1
attribute uniqueness constraint entries, 19
DN, 19.1
attribute uniqueness constraints
creating by using ldapadd, 19.5.3
deleting by using ldapdelete, 19.5.5
modifying by using ldapmodify, 19.5.4
attribute values not preserved on upgrade to 11g, A.2
attributes
adding, 21.1.3.1
by using ldapmodify command, 21.3.5, 21.3.6, 21.3.11
adding index by using ldapmodify command, 21.3.7
as metadata in schema, 21.1.1
attribute options, 13.3.8
adding by using ldapmodify, 13.3.6
conceptual discussion, 3.4.6
deleting by using ODSM, 13.3.7
base schema
deleting, 21.1.3.3
modifying, 21.1.3.2
change logs, 43.3.2
collective, 16
commonName, 3.4.3
configuration
automatically created, 3.4.1
defined, 9.1.1
managing by using WLST, 9.3
content rules, 21.1.4.5
defined, 3.4
deleting, 21.1.3.3, 21.1.3.3
by using ODSM, 21.2.8
determined by object classes, 21.1.2
ditcontentrule, 21.1.4.4
dropping indexes, 21.2.13
extending number of
by using auxiliary object classes, 21.1.4.2
by using content rules, 21.1.4.3
for existing entries, 21.1.4.2
prior to creating entries, 21.1.4.1
for a specific entry
viewing by using ODSM, 13.2.5
hashed, 9.2.2
in base schema, 21.1.3
in Fusion Middleware Control replication wizard, 42.2.2
in top object class, 3.5.2.3
indexed, 3.1.4
indexes, created by bulkload, 15.3.1
indexing, 21.3.7, 21.3.9, 21.3.9, 21.3.9
by using catalog command, 21.1.3.4, 21.1.3.4
information, kinds of, 3.4.1
inheritance of, 21.1.2
instance-specific
managing by using Fusion Middleware Control, 9.2
jpegPhotos, 3.4.3, 13.3.4
kinds of information in, 3.4.1
labeledURI, 14.1.2.3, 14.1.2.3, 14.1.2.3, 14.3.3.1, 14.3.3.2
listing
by using ldapsearch, 13.3.1
managing
by using Fusion Middleware Control, 9.2
mandatory, 3.5, 21.1.2, 21.2.3
in a user entry, 37.3.3.1.2
matching rules, 3.4.5, 3.4.5, 3.4.5
modifying
by using ldapmodify, 21.3.5
by using ODSM, 21.2.7
rules for, 21.1.3.2
using ldapmodify command, 21.3.11
multivalued
converting to single-valued, 21.1.3.2
null values in, 21.1.2
objects associated with an ACI, 30.1.2.1
of the DSA configuration entry, 9.1.4
of the DSE, 9.1.5
of the instance-specific configuration entry, 9.1.3
optional, 3.5, 21.1.2
options, 3.4.6
language codes., 3.4.6
organization, 3.4.3
organizationalUnitName, 3.4.3
redefining mandatory, 21.1.2.1
ref, 20.1
removing from object classes, 21.1.2.2
replication configuration container, 42.1.1
searchable, 15.7.1
searching
by using ODSM, 21.2.10
single-valued, 3.4.2
converting to multivalued, 21.1.3.2
skewed, 9.2.2
specifying as mandatory or optional, 21.1.2
storing password verifiers
for authenticating to Oracle components, 31.3.2
syntax, 3.4.4, 3.4.4
modifying, 21.1.3.2
syntax type
selecting, 21.2.17
syntaxes
cannot modify, 21.1.3.2
selecting, 21.2.17
system operational, 9.1
types, 3.4
user entry, 12.2.1
usercertificate, K
values, 3.4
viewing, 13.2.5, 13.2.5
with aliases
adding by using ldapmodify command, 21.3.10
audit
attributes, 23.1
events and categories, 23.1.2
users to always, 23.2
audit configuration
viewing
by using ldapsearch command, 23.4.1
audit framework
advantages, 23.1
features, 23.1
audit policy, 23.2
audit policy page
in Fusion Middleware Control, 23.2
audit presets, 23.1.2
audit record pathname, 23.1.4
audit record storage, 23.1.4
audit records, 23.1.4
audit, 10g versus 11g, A.8
auditing, 23
administrator, 23.1
defined, 23.1
managing
by using Fusion Middleware Control, 23.2
by using ldapmodify command, 23.4.2
managing by using WLST, 23.3
auditing Oracle Directory Integration Platform, 23.1.3
auditing replication, 23.1.3
authentication, 33
anonymous, 33.1.1, 33.1.1
at ldapbind, 33.1
certificate, 33.1.1
conceptual discussion, 33.1
defined, 3.7
direct
options, 33.1.1
external, 33.1.3, 46.1
SASL, 33.1.1
in a typical directory operation, 3.2
indirect, 33.1.2
through a RADIUS server, 33.1.2
modes, SSL
testing, 27.6
native, 46.1
Oracle directory replication server, 40.1.8.1
password-based, 33.1.1
PKI, 27.1
SASL, 33.1.1
SASL mechanism
external authentication, 33.1.1
MD5 Digest, 33.1.1
simple, 33.1.1
Simple Authentication and Security Layer (SASL), 33.1.1
SSL
defined, 33.1.1
three levels, 1.3.3.3
through a middle tier, 33.1.2
authentication of replication server, 40.1.8.1
Authentication Services Group, 32.4.2
authorization, 3.7
defined, 30.1
automated resolution of conflicts, 43.1.6.3
autotune replication, 42.2.1, 43.1.2, 43.2.6, 43.3.7
auxiliary object classes, 3.5.2.2, 3.5.2.2, 21.1.2.2
extending number of attributes by using, 21.1.4.2

B

backing up data
before setting up replication, 40.5.1
backup and restore, 26
base schema
attributes, 21.1.3
deleting, 21.1.3.3
modifying, 21.1.3.2, 21.1.3.2
object classes
modifying, 21.1.2.2
base search, 13.2.2
basic management tasks, 7.6
binary values
printing by using ldapsearch command, 13.3.8
bind IP filter, 30.1.2.2, 30.1.2.2.3
bind mode, 30.1.2.2.2
bind operation
when authentication occurs, 33.1
bind performance monitoring garbage collectors, 36.1.1.2.2
binding, 3.2
binds
anonymous, 9.2.1
bootstrap
setting up by using command line, 40.5.2.1
setting up by using replication wizard, 40.1.3
troubleshooting, S.1.12.3
bootstrap capability of the replication server, 40.1.3
bootstrap rules, 40.1.3
bulk tools, 15.1
environment variables required, 15.1
troubleshooting, S.1.17
bulkdelete command, 15.5
deleting naming contexts
replication setup, 40.5.2.2.7
Globalization Support, I.7.3
log file location, 24.1
log file name, 24.1
replication setup
deleting naming contexts, 40.5.2.2.7
syntax, 15.5
bulkload
load command
option, 15.3.1
bulkload command, 15.3.1, 15.3.1
check mode, performing on LDIF files, 37.2.1
creating indexes, 15.3.1
Globalization Support, I.7.1
loading data
replication setup, 40.5.2.2.7
loading data into schema, 15.3
log file location, 24.1
log file name, 24.1
migrating third party LDAP data, 37.2.4
replication setup
loading data, 40.5.2.2.7
syntax, 15.3
troubleshooting, S.1.16
bulkmodify command, 15.4
Globalization Support, I.7.4
log file location, 24.1
log file name, 24.1
syntax, 15.4

C

cache
metadata, 3.1.4
cached and uncached groups, 14.1.2.1
caches
entry
tuning, 9.2.2
privilege group membership
tuning, 9.2.2
case of attribute name in search request, 9.2.1
catalog
limit on number of attributes, S.1.18
catalog command, 21.3.9
creating indexes, 15.7
log file location, 24.1
log file name, 24.1
referential integrity
enabling, 22.5
syntax, 15.7
troubleshooting, S.1.18
catalog entry, 3.1.4
Catalog Management Tool
See catalog command
certificate authentication, 33.1.1
certificates
in wallet, 27.1.5
change log entries
on ODSM home page, 25.4
change logs
and directory replication, 43.1.3
attributes, 43.3.2
change number-based purging, 36.1.4
DNs, 36.1.4
enable or disable generation
tuning, 9.2.1
garbage collection
troubleshooting, S.1.13
garbage collector, 36.1.1.2.2
in Advanced Replication, D.2
in replication, 43.1.3
managing generation, 43.3.1
managing generation by using Fusion Middleware Control, 43.2.1
purging, 36.1.4, 36.1.4, 36.1.4
configuring by using ldapmodify command, 36.5
methods, 36.1.4
purging, in multimaster replication, 36.1.4
time-based purging, 36.1.4
viewing by using ldapsearch command, 43.3.2
viewing by using ODSM, 43.2.2
change number-based purging, 36.1.4
change retry count, 43.3.7
replication, 42.2.1
change retry counts, 43.2.6
cipher suites
SSL, 27.1.1
SSL, supported, 27.1.1
supported in SSL, 27.1.1
cn entry attribute, 3.4.3
adding, 13.3.4
cn=oraclecontext naming context
replication setup, 40.6
cn=pwdpolicies container in realm, 29.1.3
cn=replication namecontext, 42.1.4
cold failover cluster
configuring IP address, 10.2
cold failover clusters
IP addresses, 10.2
collective attribute
managing, 16.2
overriding, 16.1.4
collective attributes, 16
command-line tools, 7.5
10g versus 11g, A.5
Catalog Management Tool, 21.1.3.4
indexing, 21.1.3.4, 21.3.9
managing entries, 13.3
overview, 7.5
setting Globalization Support, I.5
common entry, defined, 3.1.4
Common Group Attributes Group, 32.4.7, 32.4.8, 32.4.9
Common User Attributes Group, 32.4.6
commonName attribute, 3.4.3
compare failure performance monitoring garbage collectors, 36.1.1.2.2
components
of a directory server, 3.1.1
of Oracle Internet Directory, 1.3.2
compound RDNs
oidcmprec limitations, 43.4.13
computed attributes, managing, 17
configuration attributes, 9
10g versus 11g, A.2
automatically created, 3.4.1
defined, 9.1.1
listing by using ldapsearch command, 9.4.2
managing
by using ODSM, 9.5
by using WLST, 9.3
setting by using ldapmodify command, 9.4.1
configuration files, 10g versus 11g, A.6
configuration information, 10g versus 11g, A.2
conflict resolution
automatic, 43.1.6.2
in replication, 43.1.6
messages, 43.3.8
command-line monitoring, 43.3.7
monitoring by using Fusion Middleware Control, 43.2.12
conflicting access control policies, 30.1.1.1
precedence, rules for resolving, 30.1.1.1
conflicts, replication
automated resolution of, 43.1.6.3, 43.1.6.3
manual resolution of, 43.3.9
resolution, 30.1.4.1, 43.1.6, 43.1.6
resolving manually, 43.3.9
typical causes of, 43.1.6, 43.1.6
CONNECT_BY assertions and dynamic groups, 14.1.2.3, 14.1.2.3
connecting
to a directory server, 3.2
connection timeout
tuning, 9.2.1
connection to Oracle Database down, S.1.2.1
connections
on ODSM home page, 25.4
connections to database
tuning, 9.2.1
connections, pooling, 1.3.3.1
constraints, object classes, 3.5.2.2
consumers, defined, 6.2.4
containment
of groups, planning, 5.3
of users, planning, 5.3
content rules
adding
by usingldapmodify command, 21.3.14
defined, 21.1.4.3
defined as values of ditcontentrule attribute, 21.1.4.4
extending number of attributes by using, 21.1.4.3
format, 21.3.14
managing
by using command-line tools, 21.3.14
modifying
by using ODSM, 21.2.15
parameters, 21.3.14
rules for creating and modifying, 21.1.4.4
schema enforcement when using, 21.1.4.5
controls
definition, 1.2.2
converting
auxiliary object classes, 21.1.2.2
structural object classes, 21.1.2.2
createTimestamp attribute, 3.4.1, 37.2.1
optional in top, 3.5.2.3
creating an instance, 10g versus 11g, A.1
creating content rules
by using ODSM, 21.2.14
creating content rules by using ODSM, 21.2.14
creating dynamic groups
by using ODSM, 14.2.3
creating static groups
by using ODSM, 14.2.1
creatorsName attribute, 3.4.1, 37.2.1
optional attribute in top, 3.5.2.3
critical events
in Oracle Internet Directory Server Manageability framework, 25.5.4
levels, 25.5.4
customized settings
LDAP replication setup, 40.5.2

D

data migration from other repositories, 37
data migration process, 37.2
data privacy, 3.7, 28
database
connections
pooling, 1.3.3.1
tuning, 9.2.1
dedicated for directory, 3.1.1
errors, S.1.2
password, changing, 12.8
server, 1.3.1
server error, S.1.2.2, S.1.2.3
server performance
troubleshooting, S.1.7.3
database account ODSSM
accessing server manageability information, 25.1.4
Database Vault
best practices, 28.5
configuration for Oracle Internet Directory, 28.4.3
deleting policies, 28.4.5
disabling, 28.4.5
policies for protecting Oracle Internet Directory, 28.4.2
databases used by Oracle Internet Directory
tablespace encryption
enabling or disabling, 28.2
dc attribute, 3.4.3
debug
on ODSM home page, 25.4
debug logging levels, 24.2.2
about, 24.1.1
replication server, 42.2.1, 43.2.6, 43.3.7
configuring by using Fusion Middleware Control, 43.2.8
setting by using ODSM, 24.2.2
setting by using OID Control Utility, 24.3.2
setting by using the command line, 24.3.2
debug operations, 24.3.3
enabled, 24.2.2
setting
by using ldapmodify command, 24.3.3
debug, enabling, 10g versus 11g, A.4
debugging LDAP operations, 24.3.3
debugging the external authentication plug-in, 46.3
debugging, limiting to specific operations, 24.3.3
default configuration
access controls, 32.1.3
default identity management realm, 3.14.2.1, 34.1.5
default knowledge references (referrals)
configuring, 20.3
default password policy, 29.1.4
default ports, 3.1.3
10g versus 11g, A.3
default URLs and ports
list of commonly-used, 7.2.5
Delegated Administration Services
defined, 3.11
self-service console, 12.3.1
delegating privileges, 32
delegating privileges for user and group management, 32.1.4
deleting a replica
command-line, 40.5.4
deleting attributes by using ODSM, 21.2.8
deleting object classes by using ODSM, 21.2.4
dereferencing alias entries, 18.1
differences between 10g and 11g, A
Digest, MD5, 33.1.1
digest-md5 attribute, 42.1.6, 42.2.1, 43.2.6, 43.3.7
directories
application, migrating data from, 37.3
backup and restore, 26
contrasted to relational databases, 1.1.1
database listener, C.2.2.3.1
defined, 1.1
distributed, 3.9
existing, default directory structure, 37.1
expanding role of, 1.1.1
location-independent, 1.1.1
online
expanding role of, 1.1.1
partitioned, 3.9.2
planning structure of, 5.2
schema
managing, 21
overview, 21.1
special purpose, 1.1.2
under the Oracle instance, 2.8
directory attributes
view all by using ODSM, 21.2.9
directory concepts and architecture, 3
directory entries, managing, 13.1
directory information tree (DIT), 3.3.1
default, 34.1.5
defined, 3.3.1
planning, 5.1
planning for identity management, 5.1
directory metadata
defined, 3.1.4
directory organization, 5.1
directory replication group (DRG) type, 6.2.4
directory replication server, 1.3.2, 3.1.1
authentication, 40.1.8.1
log file location, 24.1
directory schema, 21.1.1
defined, 3.1.4
managing, 21
directory servers, 1.3.2, 1.3.2, 3.1.2, 3.1.2, 3.1.2
connecting to, 3.2
log file location, 24.1
managing instances, 8.1
processes
multiple, 3.1.2
shared server, 1.3.3.1
supported by server chaining, 38.1.1
viewing information, 8.2.1, 8.3.6
disabling accounts, 12.2.1
disallowed password values
password policy attribute, 29.1.5
dispatcher
maximum server response time, 9.2.1
dispatcher process, 3.1.1, 8.1.3
dispatcher threads
number
tuning, 9.2.1
displaying entries
by using ODSM, 13.2.1
distinguished names, 3.3.1
components of, 3.3.1
defined, 3.3.1
format, 3.3.1
distributed directories, 3.9, 3.9, 3.9, 3.9.2
partitioned, 3.9
replicated, 3.9
ditcontentrule attribute, 21.1.4.4
DITContentRule subschemasubentry attribute, 21.1.4.4
DN
match, 9.2.2
See also distinguished names
user, 9.2.2
DSA configuration entry
attributes, 9.1.4, 9.1.5
defined, 9.1.5
DN, 9.1.4
navigating to in ODSM, 9.5.2
DSE root
navigating to in ODSM, 9.5.3
dual mode
SSL, 27.1.6
dumping entries by using ldifwrite, 15.6
duplicate attribute values, cleaning up, 19.2
duration of a search, specifying, 13.2.2
dynamic groups, 14.1.2
cached and uncached, 14.1.2.1
creating
by using ldapadd, 14.3.3
by using ODSM, 14.2.3
modifying
by using ldapmodify command, 14.3.4
by using ODSM, 14.2.4
refreshing, 14.1.2.1
schema elements for creating, 14.1.2.3
dynamic password verifiers
described, 31.6
generating, 31.6
troubleshooting, S.1.14

E

-E argument in Globalization Support, I.5.1
EM
See Fusion Middleware Control
EMD administrator account
password
changing by using WLST, 12.10
enabling debug, 10g versus 11g, A.4
encryption
of sensitive attributes, 28.6
passwords
UNIX crypt, 31.1.2, 31.3.1
Enterprise Manager
See Fusion Middleware Control
Enterprise User Security
server chaining
plug-in for password change notification, 38.5
SSL needs, 27.1.6
with server chaining, 38.1
entity component, in access control, 30.1.2.2.1
entries
adding
by copying an existing entry, 13.2.8
by using ODSM, 13.2.6, 13.2.6
requires write access to parents, 13.2.6
adding by using ldapmodify, 13.3.6
attributes, viewing, 13.2.5
catalog, defined, 3.1.4
common, defined, 3.1.4
conceptual discussion, 3.3
displaying
by using ODSM, 13.2.1
distinguished names of, 3.3.1
garbage collector, 36.1.3
inheriting attributes, 21.1.2
loading, 21.1.2
locating by using distinguished names, 3.3.1
managing
by using bulk tools, 15
by using command line tools, 13.3, 13.3, 13.3
by using command-line tools, 13.3
by using ODSM, 13.2
modifying
by using ODSM, 13.2.9, 13.2.9, 13.2.9
naming, 3.3.1, 3.3.1
objects associated with an ACI, 30.1.2.1
parent, 21.1.2
password policy, defined, 3.1.4
password verifier, defined, 3.1.4
plug-in, defined, 3.1.4
replication naming context container, 42.1.4, 42.1.5
restricting the kinds users can add, 30.2.2.2, 30.3.1
returned by a search
maximum number, 9.2.1
searching
base level, 13.2.2, 13.2.2
by using ODSM, 13.2.2, 13.2.2
one-level, 13.2.2, 13.2.2
specifying search depth, 13.2.2
subtree level, 13.2.2, 13.2.2
selecting by DN
by using ldapmodify command, 30.3.5
static group
modifying, by using ldapmodify command, 14.3.2
statistics collector, 36.1.3
user
adding, by using ldapadd, 13.3.4
modifying, 13.3.5
modifying, by using ldapmodify, 13.3.5
with attribute options
deleting by using ODSM, 13.3.7
searching for by using ldapsearch, 13.3.8
entry cache
defined, 3.3.2
tuning, 9.2.2, 9.2.2
entry-level access
granting
by using ODSM, 30.2.5
modifying
by using ODSM data browser, 30.2.5
setting
by using ODSM data browser, 30.2.5
environment variables
required for bulk tools, 15.1
when using command-line tools, 7.5
environment variables, NLS_LANG, I.2
error messages, S.1.3.4
30SendPort, S.1.2.2, S.1.2.2
additional, S.1.3.4
administration, S.1.3, S.1.3
alias entries, 18.5
constraint violation, S.1.3.2
database server, S.1.2.2, S.1.2.3
directory server, due to interrupted client connection, S.1.2.2
directory server, due to schema modifications, S.1.2.3
installation, S.1.1, S.1.1
ORA-01483, S.1.3.2
ORA-1562, S.1.2.3
ORA-3113, S.1.2.1
ORA-3114, S.1.2.1
password policies, S.1.6.2
returned from Oracle directory server, S.1.3.3
sgslunrRead, S.1.2.2
standard, S.1.3.3
event tracking
security
configuring by using ldapmodify command, 25.5.2
exclusionary access to objects, granting, 30.1.4.3, 30.1.4.3
existing ACPs and their ACI directives, modifying
by using ODSM access control, 30.2.3
existing attributes
modifying aliases in
by using ldapmodify, 21.3.11
expiration warning messages
password policy attribute, 29.1.5
expiry warning
password policies, 29.1.4
explicit hierarchies, 14.1.3
extensibility, in LDAP Version 3, 1.2.2
extensibleObject object class, 20.1
external authentication, 33.1.3
contrasted with native authentication, 46.1
defined, 46.1
plug-in, 46, 46.1
debugging, 46.3
installing, 46.2, 46.4
installing, configuring, and enabling, 46.2
SASL authentication mechanism, 33.1.1
external repository, storing security credentials in, 46

F

failed login attempts
operational attribute, 29.1.6, 29.1.6
failover, 1.3.3.2
failure tolerance, and replication, 6.1
fan-out replication, 6.2.4
described, 40.1.7
example of configuration objects, 42.1.7
groups, 6.2.4
with multimaster replication groups, 6.2.7
LDAP-based, 3.9.1
setup, 40.6
features, new
release 11g (11.1.1), Preface
release 11g (11.1.1.4.0), Preface
release 11g (11.1.1.6.0), Preface
file names
log files, 24.1
filters
in searches, 3.2
maximum size, 9.2.2
search processed in memory, 9.2.2
force flushing trace information, 24.3.4
framework
server manageability, 25.1.1
full replication, 6.2.1
function calls, tracing, 24.3.2
Fusion Middleware Control
activating replication, 43.2.7
as a component of Oracle Internet Directory server manageability, 25.1.2
changing superuser password, 12.5
configuring a user for statistics collection, 25.2.2
configuring certificate authentication method, 33.2
configuring logging, 24.2.2
configuring replica details, 43.2.9
configuring replication attributes, 42.2, 43.2.6
configuring replication debug level, 43.2.8
configuring SASL authentication, 33.3
configuring server statistics collection, 25.2.1
configuring SSL, 27.2
configuring SSL parameters, 27.2.2
connecting, 7.3
creating a wallet, 27.2.1
deactivating replication, 43.2.7
default port, 7.2.5
defined, 2.9
deleting replication agreements, 43.2.5
described, 2.9
enabling or disabling change log generation, 43.2.1
enabling referential integrity, 22.2
General tab of Server Properties page, 9.2.2
home page
statistics information, 25.3
human intervention queue, 43.2.11
invoking ODSM from, 7.4.5
log files
viewing, 24.2.1
logging
configuring, 24.2.2
managing and monitoring replication, 43.2
managing anonymous binds, 33.7.1
managing auditing, 23.2
managing configuration attributes, 9.2
managing logging, 24.2
managing Oracle Internet Directory, 7.3
managing Oracle Internet Directory components, 8.2
managing replica naming context objects, 43.2.3
managing Server Properties, 9.2.1
managing worker threads, 43.1.2
menus, 7.3
metrics, 25.3.2
monitoring conflict resolution, 43.2.12
oidmon interprets, 3.1.1
performance summary, 25.3.2
process status available to, 4.3.4
replication configuration, 42.2.1
replication wizard
bootstrap capability, 40.1.3
restarting the directory server, 8.2.4
server properties page, 9.2.1
setting server mode, 15.2.1
setting SSL parameters, 27.2.3
setting up statistics collection, 25.2
shared properties page, replication tab, 43.2.6
shared properties, replication tab, 42.2.1
starting the directory server, 8.2.2
statistics on Oracle Internet Directory home page, 25.3.1
troubleshooting, S.1.22
URL, 7.3
viewing active server information, 8.2.1
viewing log files, 24.2.1
viewing or modifying replication setup, 43.2.4
viewing queue statistics, 43.2.10
viewing statistics information, 25.3
Fusion Middleware Control replication wizard
configuration attributes, 42.2.2
replication setup, 40.3
setup, 40.3
Fusion Middleware Control, introduction, 7.3
Fusion Middleware Home
defined, 2.4

G

garbage collection, 36
database patch needed, S.1.13
framework
about, 36.1
components of, 36.1.1
how it works, 36.1.2
in replication, 36.1.4
plug-in, 36.1.1.1
garbage collection log
monitoring, 36.4.3
garbage collectors
bind performance monitoring, 36.1.1.2.2
change log, 36.1.1.2.2
definition, 36.1.1.2.1
DN, 36.1.3
entries for, 36.1.3
general statistics, 36.1.1.2.2
health statistics, 36.1.1.2.2
LDAP compare performance monitoring, 36.1.1.2.2
LDAP performance monitoring, 36.1.1.2.2
managing, 36.3
modifying
by using ldapmodify command, 36.3.2
by using ODSM, 36.3.1
predefined, 36.1.1.2.2
security and refresh events, 36.1.1.2.2
system resource events, 36.1.1.2.2
tombstone, 36.1.1.2.2
general statistics garbage collector, 36.1.1.2.2
generate stack dump, 43.3.7
Globalization Support, 3.8, 3.8, I
Bulk Tools, I.7
bulkdelete command, I.7.3, I.7.3
bulkload command, I.7.1
bulkmodify command, I.7.4
command-line tools, I.5, I.5
ldapadd command, I.5.2
ldapaddmt command, I.5.2
ldapbind, I.5.2
ldapcompare command, I.5.2
ldapdelete command, I.5.2
ldapmoddn command, I.5.2
ldapmodify command, I.5.2
ldapmodifymt command, I.5.2
ldapsearch command, I.5.2
LDIF Files, I.4
ldifwrite command, I.7.2
managing, I
settings for Oracle Internet Directory, I.2
grace logins
enforced by password policies, 29.1.4
password policy attribute, 29.1.5
grace period
operational attribute, 29.1.6
graphical user interfaces, 10g versus 11g, A.6
group entries
creating
by using ODSM, 14.2.1, 14.2.1, 14.2.3
groupOfNames object class, 14.1.1.1, 14.2.1, 14.2.1, 14.2.3, 14.2.3
groupOfUniqueNames object class, 14.1.1.1, 14.2.1, 14.2.3
groups, 14
ACL evaluation for, 30.1.4.4
ACPs, 30.1.1.4.1, 30.1.1.4.1
creating
by using ODSM, 14.2.3
dynamic, 14.1.2
creating by using ldapadd, 14.3.3
refresh, 14.1.2.1
schema elements for creating, 14.1.2.3
dynamic and static, administration of, 14
granting access rights to, 30.1.1.4.5
granting selfwrite access
by using ldapmodify command, 30.3.7
hierarchical, 14.1.3
membership
how directory server computes, 30.1.1.4.6
modifying by using ldapmodify, 14.3.4
names and containment, planning, 5.3
privilege, 30.1.1.4, 30.1.1.4.2, 30.1.1.4.2
defined, 3.1.4
static, 14.1.1
modifying by using ldapmodify command, 14.3.1
schema elements for creating, 14.1.1.1
when to use static or dynamic, 14.1.6
guidelines
for deleting object classes, 21.1.2.3

H

hashed attributes, 9.2.2
hashed password comparisons
password policy attribute, 29.1.5
hashing
passwords to the directory, 31.1
protection
MD4, 31.1.2
hashing algorithms
default, 31.1
password verifiers
for authenticating to Oracle components, 31.3.1
userpassword, 31.1
hashing schemes
for protecting user passwords, 31.1.2
retained on upgrade, 31.1
health statistics garbage collector, 36.1.1.2.2
hierarchical groups, 14.1.3
hierarchies
explicit, 14.1.3
implicit, 14.1.3
high availability, 1.3.3.2
home page
ODSM
statistics information, 25.4, 25.4
human intervention queue, 43.1.4
managing, 43.3.9
managing processing by using ldapmodify command, 43.3.12
number of entries
managing by using Fusion Middleware Control, 43.2.11
processing, 43.1.4.3
schedule, 40.3, 42.2.2, 43.3.5
tools, 43.3.9, 43.3.9

I

identity management, 34.1.5
defined, 3.14.1
planning DIT for, 5.1
policies, 3.14.2.2
realms, 3.14.2, 34.1.2
creating additional, 34.3
customizing, 34.2
default, 3.14.2.1
defined, 3.14.2
entry in default DIT, 34.1.4
implementation in Oracle Internet Directory, 34.1.4
in enterprise deployments, 34.1.2
in hosted deployments, 34.1.3
multiple, 34.1.2.2
multiple in enterprise deployments, 34.1.2.2
planning, 34.1.1
single, 34.1.2, 34.1.2.1
single in enterprise deployments, 34.1.2.1
realm-specific Oracle Context, 34.1.4
idle connection timeout
tuning, 9.2.1
IETF
LDAP approval, 1.2.2
implicit hierarchies, 14.1.3
inactivate replication, 42.2.1, 43.3.7
indexed attributes, 3.1.4
indexes
adding
by using ldapmodify, 21.3.7
by using ODSM, 21.2.11
created by bulkload, 15.3.1
creating by using catalog command, 15.7
dropping
by using catalog command, 15.7.1
dropping from attributes, 21.2.13
by using ldapmodify command, 21.3.8
by using ODSM, 21.2.12, 21.2.13
inheritable ACP
setting up
by using ldapmodify command, 30.3.2
inheritance, 3.5.1, 3.5.1
and access control policies, 30.1.1.1
class, 3.5.1
from superclasses, 21.1.2
installation errors, S.1.1
instance configuration information, 10g versus 11g, A.1
instance creation, 10g versus 11g, A.1
instances
adding, 8.1.3
Oracle Internet Directory
adding, 8.1.3
creating the first, 8.1.2
managing, 8.1
registering
by using opmnctl command, 8.3.2
instances, managing server, 8.1.1
instance-specific configuration entry
attributes, 9.1.3
DN, 8.1.1, 9.1.3
navigating to in ODSM, 9.5.1
integration, Oracle Directory Services Manager-SSO, 7.4.1.3
intermediate template file
in migration from application-specific repositories, 37.3.1
internationalization, and LDAP, I
Internet Engineering Task Force (IETF). See IETF.
Internet Protocol version 6
configuring address, 10.2
interoperability mode
SSL, 27.1.7
interoperability mode, SSL
setting by using ldapmodify command, 27.7
introduction to directory services, 1
invalid login attempts, lockout after
password policy attribute, 29.1.5
IOT option, catalog command, 15.7
IP addresses
cold failover clusters, 10.2
managing, 10.1
virtual, 10.2
IPV4 addresses, 10.1
IPV6 addresses, 10.1

J

Java containers, 10g versus 11g, A.14
Java Key Store
retrieving passwords, O.2
Java plug-ins
API, E.3
setting up, E.2
jpegPhoto attribute, 3.4.3, 13.3.4

K

keep alive
LDAP connection, 42.2.2
replication server connection, 40.3
keystore
retrieving passwords, O.2
knowledge references, 3.9.2, 3.10, 3.10, 20.1
configuring, 20.1
default
configuring, 20.3
defined, 3.10
managing, 20.1
overview, 3.9.2
restricting permissions for managing, 3.10
smart
configuring, 20.2
superior, 3.10

L

labeleduri, 14.1.2.1
labeledURI attribute, 14.1.2.3, 14.1.2.3, 14.1.2.3, 14.3.3.1, 14.3.3.2
language codes, as attribute options, 3.4.6
last login attempt, 29.1.6
last password change
operational attribute, 29.1.6
last successful login
operational attribute, 29.1.6
latency, operation
on ODSM home page, 25.4
LDAP
add or modify performance, S.1.7.2
and internationalization, 3.8
and simplified directory management, 1.2.1
attributes, common, 3.4.3
communication between replication server and directory, 3.1.1
compare performance, 36.1.1.2.2
extensibility, 1.2.2
IETF approval, 1.2.2
search performance, S.1.7.1
security, 1.2.2
server instances, 3.1.1, 3.1.1, 3.1.2, 3.1.2
servers, 3.1.2
multithreaded, 1.3.3.1
Version 3, 1.2.2, 1.2.2
LDAP filter definition, G
LDAP multimaster agreement
converting an Advanced Replication-based agreement to, 40.2
LDAP operations
causing replication conflicts, 43.1.6
debugging, 24.3.3
tracing, 24.3.3
LDAP Utilities, 7.5.1
ldapadd command, 7.5.1
adding alias entries, 18.2
adding entries, 13.3.4
adding partial replication context, 40.6
attribute aliases
using with, 21.3.13.2
configuring server chaining, 38.2.2
creating attribute uniqueness constraints, 19.5.3
creating dynamic groups, 14.3.3
entries
adding, 13.3.4
Globalization Support, I.5.2
password policy
creating, 29.3.2
replication setup, 40.5.2.1.4
ldapaddmt command, 7.5.1
Globalization Support, I.5.2
LDAP-based partial replication
determining what is to be replicated, 43.1.1
LDAP-based replica
deleting, 40.5.4
setting up, 40.5.2
LDAP-based replication
configuring, 40.1.7
process, D.3
rules, 40.1.7
setup, 40
LDAP-based replication architecture, D.3
ldapbind command, 7.5.1
and Globalization Support, I.5.2
SSL
testing, 27.6
SSL configuration
testing, 27.6.1
ldapcompare command, 7.5.1
Globalization Support, I.5.2
LDAP-compliant directories, migrating data from, 37.2
ldapdelete command, 7.5.1
attribute aliases
using with, 21.3.13.4
deleting attribute uniqueness constraints, 19.5.5
deleting replication context, 40.6
Globalization Support, I.5.2
ldapmoddn command, 7.5.1
attribute aliases
using with, 21.3.13.5
Globalization Support, I.5.2
ldapmodify command, 7.5.1
adding ACPs, 30.3.2
adding attribute options, 13.3.6
adding attributes, 21.3.5, 21.3.6, 21.3.11
adding attributes to object classes, 21.3.3
adding attributes with aliases, 21.3.10
adding object classes, 21.3.2, 21.3.4
adding plug-in configuration entries, 45.3.2
attribute aliases
using with, 21.3.13.3
attribute aliases in existing attributes
modifying, 21.3.11
attribute options
adding, 13.3.6
deleting, 13.3.7
attributes, 21.3.6
auditing
enabling for replication and Oracle Directory Integration Platform, 23.4.3
managing, 23.4.2
configuring attributes of replication configuration set, 43.3.7
configuring change log purging, 36.5
configuring knowledge references, 20.2
configuring replica subentry attributes, 43.3.3
configuring replication agreement attributes, 43.3.5
configuring server chaining, 38.2.2
configuring SSL, 27.4
configuring SSL authentication, 27.4
configuring SSL cipher suite, 27.4
configuring SSL interoperability mode, 27.4
configuring SSL version, 27.4
configuring SSL wallet URL, 27.4
configuring user statistics
configuring statistics collection, 25.5.5
content rules
adding, 21.3.14
debug operations
setting, 24.3.3
delete attribute aliases, 21.3.12
deleting attribute options, 13.3.7
disabling accounts by using, 12.2.1
enabling force flushing to log file, 24.3.4
enabling SSL, 27.4
entries
modifying, 13.3.5
selecting by DN, 30.3.5
entry level ACLs
setting up, 30.3.3
Globalization Support, I.5.2
granting selfwrite access to group entries, 30.3.7
indexes
adding, 21.3.7
dropping from attributes, 21.3.8
managing anonymous binds, 33.7.2
managing change log generation, 43.3.1
managing human intervention queue, 43.3.12
managing password verifier profiles for Oracle components, 31.5.2
managing replication configuration attributes, 42.3
managing superuser, 12.7
modifying alias entries, 18.4
modifying attribute uniqueness constraints, 19.5.4
modifying attributes, 13.3.5, 21.3.5, 21.3.11
modifying dynamic groups, 14.3.4
modifying garbage collectors, 36.3.2
modifying replica naming context object parameters, 43.3.6
modifying static groups, 14.3.1, 14.3.2
object classes
adding, 21.3.4
password hashing schemes
managing, 31.2
password hashing schemes for creating password verifiers
managing, 31.1.2
password policies
setting, 29.3.4
password policy
applying to subtree, 29.3.3
privacy mode
enabling, 28.7
read-only access
granting, 30.3.7
referential integrity
disabling, 22.6
enabling, 22.4
replication setup, 40.5.2.1.5
searching for published naming contexts, 11.3
security event tracking
configuring, 25.5.2
server mode
setting, 15.2.2
setting logging levels, 24.3.2
setting server mode, 15.2.2
setting system configuration attributes by using, 9.4.1
setting value of orclpwdverifierparams, 31.7
SSL interoperability mode
setting, 27.7
statistics collection
configuring, 25.5.1
unlocking user accounts by using, 12.2.2
user statistics
configuring, 25.5.3
using attribute selectors
granting access, 30.3.6
ldapmodifymt command, 7.5.1
Globalization Support, I.5.2
ldapsearch
listing operational attributes, 13.3.2
ldapsearch command
alias entries, 18.3.1
attribute aliases
using with, 21.3.13.1
attributes
listing, 13.3.1
audit configuration
viewing, 23.4.1
checking value of orclpwdencryptionenable, 31.7
determining replica IDs, 40.5.2.1.4
determining replication agreement
replication, 40.5.2.1.4
finding orclreplicaid value
replication setup, 40.5.2.1.4
Globalization Support, I.5.2
identifying naming contexts
replication setup, 40.5.2.2.5
listing configuration attributes, 9.4.2
password policies
viewing, 29.3.1
printing binary values, 13.3.8
privacy mode
determining, 28.7
replication, 40.5.2.1.4
determining replication agreement, 40.5.2.1.4
replication setup
finding orclreplicaid value, 40.5.2.1.4
identifying naming contexts, 40.5.2.2.5
searching
entries with attribute options, 13.3.8
searching for published naming contexts, 11.2
searching password verifier profiles for Oracle components, 31.5.1
SSL attributes
listing, 27.4
statistics
viewing configuration, 25.5.1
syntaxes
viewing, 21.3.16
viewing change logs, 43.3.2
viewing matching rules, 21.3.15
viewing schema, 21.3.1
viewing syntaxes, 21.3.16
LDIF file
using with ODSM, 13.2.3
LDIF files, 9.4.1, S.1.22
importing by using bulkload, 15.3.1
importing, by using bulkload, 15.3.1
removing proprietary data from in migration, 37.2.1
ldifwrite command, 15.6
dumping entries by using, 15.6
getting supplier data
replication setup, 40.5.2.2.5
Globalization Support, I.7.2
log file location, 24.1
replication setup
getting supplier data, 40.5.2.2.5
setting up replication by using, 40.5.2.2
syntax, 15.6
list of sensitive attributes, 28.6.1
listener, for directory database, 3.1.1, 3.1.1, 3.1.2
restarting, C.2.2.3.1
stopping, C.2.2.3.1, C.2.2.3.1
listener.ora, C.2.2.3.1
load balancing
and replication, 6.1
-load option, in bulkload, 15.3.1
location-independence, of directories, 1.1.1
locked accounts
unlocking with ODSM, 12.4
lockout after invalid login attempts
password policy attribute, 29.1.5
log files, 24.1
10g versus 11g, A.6
force flushing trace information, 24.3.4
garbage collection, 36.4.3
maximum in rotation, 43.2.6
maximum number in rotation, 24.2.1, 42.2.1
maximum size, 24.2.2, 42.2.1, 43.2.6, 43.3.7
rotation, 24.2.2
size, 43.3.7
trace messages, 24.1.2.3
viewing
by using Fusion Middleware Control, 24.2.1
log messages
for specific operations, 24.1.2.1
interpreting, 24.1.2
stored as trace objects, 24.1.2.1
logging, 24
configuring
by using Fusion Middleware Control, 24.2.2
features, 24.1.1
for garbage collectors, enabling and disabling, 36.4
format, 24.1
levels
setting by using ldapmodify command, 24.3.2
logging tab
server properties page
Fusion Middleware Control, 24.2.1
login attempts, 29.1.6
loose consistency model of replication, 6.2.5
lowercase character
password policy attribute, 29.1.5
LSNRCTL utility, C.2.2.3.1

M

ManageHiq.purge command, 43.1.4.1, 43.3.9
ManageHiq.retry command, 43.1.4.1, 43.3.9
managing directory schema, 21
mandatory attributes, 3.5, 21.1.2
adding to existing object classes, 21.1.2.2
adding to object classes in use, 21.2.3
in a user entry, 37.3.3.1.2
redefining, 21.1.2.1
manual resolution of conflicts, 43.3.9
match DN, 9.2.2
matching rules
as metadata in schema, 21.1.1
attribute, 3.4.5, 3.4.5
cannot add to subSchemaSubentry, 21.1.1
PKI, 9.2.2
stored in schema, 21.1.1
viewing
by using ldapsearch command, 21.3.15
by using ODSM, 21.2.16
maximum entry cache size
tuning, 9.2.2
maximum log file size, 24.2.2
maximum number of worker threads, 43.1.2
maximum valid time of password
password policy attribute, 29.1.5
MBeans
defined, 2.11
related to Oracle Internet Directory configuration, 9.3
MD5
for password encryption, 31.1.2, 31.3.1
MD5 Digest, SASL authentication mechanism, 33.1.1
member attribute, 14.2.1, 14.2.1, 14.2.1, 14.2.1, 14.2.3
messages, log
interpreting, 24.1.2
metadata
cache, 3.1.4
directory, defined, 3.1.4
stored in schema, 21.1.1
metrics
performance page
Fusion Middleware Control, 25.3.2
Microsoft Active Directory
with server chaining, 38.1.1
middle tier
using proxy user with, 33.1.2
migrating data
from other LDAP-compliant directories, 37.2
migrating third-party LDAP data
by using Directory Integration Platform server, 37.2.5
by using LDIF files and syncprofilebootstrap command, 37.2.3
by using syncprofile bootstrap, bulkload, and LDIF files, 37.2.4
by using syncprofilebootstrap command, 37.2.2
migration
from application-specific repositories
intermediate template file, 37.3.1
minimum password length
enforced by password policies, 29.1.4
password policy attribute, 29.1.5
modifiersName attribute, 3.4.1, 37.2.1, 42.1.6
optional in top, 3.5.2.3
modifying attribute aliases in existing attributes
by using ldapmodify, 21.3.11
modifying attributes by using ODSM, 21.2.7
modifying content rules
by using ODSM, 21.2.15
modifying dynamic groups
by using ODSM, 14.2.4
modifying object classes
by using ODSM, 21.2.3
modifying static groups, 14.2.2
by using ldapmodify command, 14.3.1
by using ODSM, 14.2.2
modifyTimestamp attribute, 3.4.1, 37.2.1, 42.1.6
optional in top, 3.5.2.3
monitoring Oracle Internet Directory, 25
monitoring servers, 25.1.2
multimaster flag
toggling, 40.5.2.1.7, 40.5.2.2.10, C.2.2.6
multimaster replication, 6.2.4, 6.2.5
multimaster replication groups
with fan-out, 40.6
with fan-out replication groups, 6.2.7
multiple directory server instances
SSL
configuration, 27.1.3
multiple server processes, 3.1.2
multithreaded LDAP servers, 1.3.3.1
multivalued attributes, 3.4.2
converting to single-valued, 21.1.3.2
member, 14.2.1, 14.2.1, 14.2.3
orclEntryLevelACI, 30.1.1.3

N

names
of groups, planning, 5.3
of users, planning, 5.3
naming contexts, 3.6
defined, 11.1
definition, 3.6
discovering, 3.6
in partitioned directories, 3.9.2
in replication filtering, 40.1.9
managing, 11, 11.1
optimization of partial replication, 40.1.9.6
publishing, 3.6, 11
searching for published, 11.2
subordinate, 3.10
that cannot be excluded from replicatio, 40.1.9.5
that cannot be replicated, 40.1.9.5
namingcontexts attribute, 9.1.5, 11.1, 11.3
multivalued, 11.3
native authentication
contrasted with external authentication, 46.1
defined, 46.1
network retry timeout
tuning, 9.2.1
new features
release 11g (11.1.1), Preface
release 11g (11.1.1.4.0), Preface
release 11g (11.1.1.6.0), Preface
new syntaxes, adding, 3.4.4
NLS_LANG environment variable, 7.5, I.2
required by bulk tools, 15.1
setting
in the client environment, I.6
settings, I.2, I.2
nodes, Oracle Internet Directory, 3.1.1
non-alphanumeric characters
password policy attribute, 29.1.5
non-Oracle clients
SSL needs, 27.1.7
non-SSL port, 3.1.3, 9.2.1
Novell eDirectory
with server chaining, 38.1.1
null values, in attributes, 21.1.2
number of entries
on ODSM home page, 25.4
number of seconds between modifications
password policy attribute, 29.1.5
number of workers
maximum, 42.2.1, 43.2.6
numeric characters
password policy attribute, 29.1.5, 29.1.5

O

O3LOGON algorithm, 31.3.1
object classes, 3.5
adding, 21.1
by using ldapmodify command, 21.3.2, 21.3.4
by using ODSM, 21.2.2, 21.2.2
adding attributes
by using ldapmodify command, 21.3.3
as metadata in schema, 21.1.1
assigning to entries, 21.1.2
auxiliary, 3.5.2.2
converting auxiliary, 21.1.2.2
defining, 21.1.4.1
deleting
by using ODSM, 21.2.4
from base schema, 21.1.4.4
not in base schema, 21.1.2.3
extensibleObject, 20.1
groupOfNames, 14.2.1, 14.2.1, 14.2.3, 14.2.3
guidelines
for deleting, 21.1.4.4
in the base schema, modifying, 21.1.2.2, 21.1.2.2
modifying
by using ldapmodify command, 21.3.4
by using ODSM, 21.2.3, 21.2.3
orclprivilegegroup, 3.1.4
and dynamic groups, 14.1.2.2
redefining mandatory attributes in, 21.1.2.1
referral, 20.1
removing attributes from, 21.1.2.2
removing superclasses from, 21.1.2.2
rules, 3.5.2.2
searching
by using ODSM, 21.2.1
structural, 3.5.2.1, 3.5.2.1
structural, converting, 21.1.2.2
subclasses, 3.5.1
defining, 21.1.4.1
superclasses, 3.5.1
top, 3.5.1
types, 3.5.2
abstract, 3.5.2.3
auxiliary, 3.5.2.2
structural, 3.5.1
unique name of, 21.1.2.1
unique object identifier, 21.1.2.1
viewing properties by using ODSM, 21.2.5
object identifier as attribute alias, 21.1.5
objectclasses
orclacpgroup, 30.1.1.4.1
OCI. See Oracle Call Interface.
OCIPing(), sending keep alive messages to database, 9.1.4
ODS_PROCESS_STATUS Table, 4.2
ODS_PROCESS_STATUS table, 4.2
ODSM, 7.4.1
adding
entries, 13.2.6
adding ACPs, 30.2.2
from data browser, 30.2.4
adding indexes to attributes, 21.2.12
adding new attributes, 21.2.5
adding new entries, 13.2.6
adding object classes, 21.2.2
assigning password polices to subtrees, 29.2.3
attributes, searching for, 21.2.10
cataloging attributes, 21.2.12
configuring HTTP server, 7.4.8
configuring server chaining, 38.2.1
configuring session timeout, 7.4.7
configuring single sign-on integration, 7.4.2
connecting, 7.4.1
connecting as an SSO-authenticated user, 7.4.6.3
connecting to server, 7.4.6
copying existing entries, 13.2.8
creating attribute uniqueness constraints, 19.4.1
creating content rules, 21.2.14
creating dynamic groups, 14.2.3
creating password policies, 29.2.3
creating plug-ins, 45.4.1
creating static groups, 14.2.1
data browser icons, 13.2.1
default port, 7.2.5
deleting a subtree, 13.2.7
deleting attribute uniqueness constraints, 19.4.3
deleting attributes, 21.2.8
deleting object classes, 21.2.4
deleting plug-ins, 45.4.4
displaying directory entries, 13.2.1
dropping indexes from attributes, 21.2.13
editiing plug-ins, 45.4.3
exporting entries, 13.2.4
home page, 25.4
icons
data browser, 13.2.1
importing entries, 13.2.3
introduction, 7.4.1
invoking, 7.4.5
JAWS screen reader, 7.4.1.1
listing and locking a locked account, 12.4
logging into server, 7.4.6.1
managing configuration attributes, 9.5
managing directory schema, 21.2
managing password verifier profiles for Oracle components, 31.4
managing plug-ins, 45.4.1
managing system configuration attributes, 9.5
modifying ACPs, 30.2.3
modifying attribute uniqueness constraints, 19.4.2
modifying attributes, 21.2.7
modifying content rules, 21.2.15
modifying dynamic groups, 14.2.4
modifying entries, 13.2.9
modifying entry-level access
from data browser, 30.2.5
modifying garbage collectors, 36.3.1
modifying object classes, 21.2.2, 21.2.3
modifying password policies, 29.2.2
navigating to from Fusion Middleware Control, 7.3
non-super user access, 7.4.1.2
registering plug-ins, 45.4.2
searching for attributes, 21.2.10
searching for entries, 13.2.2
searching for object classes, 21.2.1
selecting attribute syntax type, 21.2.17
setting entry-level access
from data browser, 30.2.5
single sign-on integration
configuring HTTP server, 7.4.4
configuring OAM, 7.4.3
supported browsers, 7.4.5
testing replication, 40.4
troubleshooting, S.1.23
URL, 7.4.5
using SSL, 7.4.6.2
viewing ACPs, 30.2.1
viewing all directory attributes, 21.2.9
viewing attributes, 13.2.5
viewing attributes for specific entries, 13.2.5
viewing local change logs, 43.2.2
viewing matching rules, 21.2.16
viewing password policies, 29.2.1
viewing properties of object classes, 21.2.5
viewing statistics information, 25.4
viewing syntaxes, 21.2.17
viewing version information, S.1.21
ODSSM account, 25.1.4
ODSSMadministrator account
password
changing by using WLST, 12.11
OID Compare and Reconcile Tool, 43.4
OID Control Utility
See oidctl command
OID Monitor
See OIDMON
oidcmprec command, 43.4
change log generation for changes, 43.4.8
comparing and reconciling inconsistent data, 43.4
conflict scenarios, 43.4.1
how it works, 43.4.4
including directory schema, 43.4.10
limitations, 43.4.13
operations supported, 43.4.2
output, 43.4.3
overriding predefined conflict resolution rules, 43.4.11
selecting attributes, 43.4.7
selecting DIT, 43.4.6
source and destination directories, 43.4.5
user-defined operations, 43.4.12
using parameter file, 43.4.9
oidctl command
in Oracle Internet Directory node, 3.1.1
in standalone mode, B.1
starting replication server, 8.4, 40.5.2.1.7
troubleshooting database server, S.1.7.3
oiddiag command
detecting referential integrity violations, 22.6
viewing statistics, 25.6
oidexaup.sql
contents of, 46.4
for installing external authentication plug-in, 46.2
OIDEXTAUTH PL/SQL package for external authentication, 46.2
oidldapd dispatcher
in instance, 8.1.3
log file location, 24.1
log file name, 24.1
oidldapd server
in an instance, 8.1.3
log file location, 24.1
OIDMON, 4.1, 4.2
in Oracle Internet Directory node, 3.1.1
OIDMON log file name, 24.1
OIDMON process
in instace, 8.1.3
oidpasswd command
changing database password, 12.8
resetting superuser password, 12.9
oidrepld command
log file name, 24.1
OIDUpgradePasswordPolicies command
replication setup, 40.5.3
one-level search, 13.2.2
one-way hashed values
userpassword verifiers, 31.1.1
online directories, 1.1.1
OpenLDAP Community, Preface
operation debug, 24.3.3
operation latency
on ODSM home page, 25.4
operational attributes, 9.1
described, 9.1.2
listing with ldapsearch, 13.3.2
operations enabled for debug, 24.2.2
operations, limiting debugging to specific, 24.3.3
OPMN
See Oracle Process Manager and Notification Server
opmnctl command, 4.1
creating a component, 8.1.3
creating a system component, 8.3.1
registering an instance, 8.3.2, 8.3.2
replication setup
starting replication server, 40.5.2.2.1
restarting server, 8.3.9
starting replication server
replication setup, 40.5.2.2.1
starting server, 8.3.7
stopping server, 8.3.8
viewing server instances, 8.3.6
viewing status, 8.3.6
opmn.xml
changing database information, 8.3.10
snippet, 4.3.1
optional attributes, 3.5, 21.1.2
adding to pre-defined object classes, 21.1.4.1
options, attribute, 3.4.6, 3.4.6
ORA-1562 error, S.1.2.3
ORA-3113 error, S.1.2.1
ORA-3114 error, S.1.2.1
Oracle Advanced Security, use of Oracle Internet Directory, 1.4.2
Oracle Application Server Administrators Group, 32.3.2
Oracle Call Interface
Oracle components
privileges for administering, 32.1.4
Oracle components, use of Oracle Internet Directory, 1.4
Oracle Context
root, 34.1.4
Oracle Context Administrators Group, 32.4.5
Oracle data servers
changing password to, 12.8, 12.8
error messages, S.1.2.2, S.1.2.3
Oracle Database Advanced Replication, C.2.2.3.2
configuring, C.2.2.3, C.2.2.3.2, C.2.2.3.2
by using Replication Management Tool, C.2.2.3
for directory replication, C.2.2.3.2
features, D.1
installing, C.2.2.3
See also Advanced Replication
setting up, C.2.2.3
Oracle Database Advanced Replication-based replication, 6.2.3, C
See also Advanced Replication
Oracle Database Server, 3.1.1
Oracle Database Transparent Data Encryption (TDE), 28.1
Oracle Database Vault, 28.3
Oracle Delegated Administration Services, 10g versus 11g, A.13
Oracle Diagnostic Logging (ODL) format, 24.1
Oracle Directory Integration Platform
defined, 3.13
description, 1.4.3
enabling auditing, 23.4.3
Oracle Directory Integration Platform auditing, 23.1.3
Oracle Directory Integration Platform, 10g versus 11g, A.12
Oracle directory replication server
authentication, 40.1.8.1
component of Oracle Internet Directory, 1.3.2
component of Oracle Internet Directory node, 3.1.1
starting in Advanced Replication, C.2.2.6
Oracle Directory Server Enterprise Edition, 38.1.1
Oracle directory server instances, 1.3.2, 3.1.1, 3.1.1, 3.1.2, 3.1.2
starting in Advanced Replication, C.2.2.5
Oracle Directory Services Manager
See ODSM
SSO integration, 7.4.1.3
Oracle Fusion Middleware, 2
Oracle Globalization Support, 3.8
Oracle home, 2.7, 2.7
Oracle Identity and Access Management
delegation in, 32.1
Oracle Identity Management
group information, 5.3.2
management policies, 3.14.2.2
objects, 34.1.4
planning, 5.1, 5.1
realms, planning, 34.1.1
user information, 5.3.1, 34.1.5, 34.1.5
what it does, 3.14.1
Oracle instance, 2.8
directories under, 8.1.2
Oracle Internet Director Server Manageability
architecture, 25.1.1
components, 25.1.1
Oracle Internet Directory
advantages of, 1.3.3
architecture, 1.3.1, 3.1
components, 1.3.2
how Oracle components use it, 1.4
nodes, 3.1.1
super user password, resetting, 12.9
used by Oracle Advanced Security, 1.4.2
Oracle Internet Directory database password
changing
by using oidpasswd, 12.8
Oracle Internet Directory Deployment Options, 2.3
Oracle Internet Directory ports, 3.1.3
Oracle Internet Directory Self-Service Console
in indirect authentication of end users, 33.1.2
Self-Service Console, 3.11
Oracle Internet Directory Server Manageability
architecture and components, 25.1.2
capabilties, 25.1.1
configuring, 25.2.1
framework, 25.1, 25.1.1
configuring critical events, 25.5.4
Oracle Net Services, 3.1.1, 3.2
preparing for Advanced Replication, C.2.2.3.1
use of Oracle Internet Directory, 1.4.1
Oracle Platform Security Services
use of Oracle Internet Directory, 1.4.1
Oracle Process Manager and Notification Server (OPMN), 3.1.1, 4.1
Oracle Single Sign-On, 10g versus 11g, A.13
Oracle Virtual Directory
description, 1.4.3
Oracle Webcenter Suite
use of Oracle Internet Directory, 1.4.1
ORACLE_HOME environment variable, 7.5
required by bulk tools, 15.1
ORACLE_INSTANCE environment variable, 2.8, 7.5, A.5
required by bulk tools, 15.1
ORACLE_SID environment variable, A.5
orclACI, 30.1.1.2
access to, 30.1.1.2
orclaci attribute, 9.1.5, 30.1.1.2
optional in top, 3.5.2.3
orclacpgroup object class, 14.1.2.2, 30.1.1.4.1
orclactivatereplication attribute, 42.1.6, 42.2.1, 43.2.7, 43.3.7
orclactiveenddate user entry attribute, 12.2.1
orclactivestartdate user entry attribute, 12.2.1
orclagreementid attribute, 42.1.3.1
orclagreementid entry, 42.1.4
orclagreementtype attribute, 42.1.3.1
orclanonymousbindsflag
values, 33.6
orclanonymousbindsflag attribute, 9.1.3, 33.6
new location in 11g, A.2
orclaudcustevents attribute, 9.1.3, 23.1.2, 23.2
orclaudfilterpreset attribute, 9.1.3, 23.1.2, 23.2
orclaudsplusers attribute, 9.1.3, 23.1.2, 23.2
orclchangeretrycount attribute, 42.1.6, 42.2.1, 43.2.6, 43.3.7
orclcommonusernickname attribute
uniqueness constraints, 19.5.1
orclcommonusersearchbase attribute in realm-specific Oracle context, 31.3.1
orclComputedAttribute attribute, 9.1.4
orclconflresolution attribute, 42.1.6, 42.2.1, 43.2.6, 43.3.7
orclConnectByAttribute group attribute, 14.1.2.3
orclConnectByStartingValue group attribute, 14.1.2.3
orclcryptoscheme attribute, 9.1.5
orcldataprivacymode attribute, 9.1.4, 28.6.1
new location in 11g, A.2
orcldebugflag, 24.3.2
orcldebugflag attribute, 9.1.3, 24.2.2, 24.3.2, 24.3.2, 24.3.2
new location in 11g, A.2
orcldebugforceflush attribute, 9.1.3, 24.3.4
new location in 11g, A.2
orcldebuglevel attribute, 42.1.6, 42.2.1, 43.2.6, 43.3.7
debug levels, 43.3.7
orcldebugop attribute, 9.1.3, 24.2.2
new location in 11g, A.2
orcldirreplgroupdsas attribute, 42.1.3.1
orcldispthreads attribute, 9.1.3, 9.2.1
orclDynamicGroup, 14.1.2.1
orclDynamicList object class, 14.1.2.1
orclecacheenabled attribute, 9.1.4, 9.2.2
new location in 11g, A.2
orclecacheenabled attribute, in performance tuning, S.1.24
orclecachemaxentries attribute, 9.1.4, 9.2.2
new location in 11g, A.2
orclecachemaxentsize attribute
new location in 11g, A.2
orclecachemaxsize attribute, 9.1.4, 9.2.2
new location in 11g, A.2
orclenablegroupcache attribute, 9.1.4
new location in 11g, A.2
orclencryptedattributes attribute, 9.1.4, 28.6.1
orclEntryLevelACI attribute, 30.1.1.3, 30.1.1.3
optional in top, 3.5.2.3
orclepwdpolicynable attribute of password policies, 29.1.2
orcleventlevel attribute, 9.1.3, 25.5.4, 25.5.4
new location in 11g, A.2
orclexcludedattributes attribute, 42.1.5
orclexcludednamingcontexts attribute, 40.6, 42.1.3.1, 42.1.5
orclextconfflag attribute, 23.1.3
orclgeneratechangelog attribute, 9.1.4, 9.2.1, 43.3.1
orclGuid
optional attribute in top, 3.5.2.3
orclhashedattributes attribute, 9.2.2
orclhiqschedule attribute, 42.1.3.1, 42.2.2, 43.3.5
orclhostname attribute, 9.1.3
configuring, 10.2
orclincludednamingcontexts attribute, 42.1.5
orclinmemfiltprocess attribute, 9.1.4, 9.2.2
orclisenabled attribute, 12.2.1
orcllastappliedchangenumber attribute, 42.1.3.1
orcllastlogintime operational attribute, 29.1.6
orclldapconnkeepalive attribute, 42.1.3.1, 42.2.2, 43.3.5
orclldapconntimeout attribute, 9.1.3, 9.2.1
new location in 11g, A.2
ORCLLM algorithm, 31.3.1
orclmatchdnenabled attribute, 9.1.4, 9.2.2
new location in 11g, A.2
orclmaxcc attribute, 9.1.3, 9.2.1
new location in 11g, A.2
orclmaxconnincache attribute, 9.1.3, 9.2.2
new location in 11g, A.2
orclmaxfiltsize attribute, 9.1.4, 9.2.2
orclmaxldapconns attribute, 9.1.3, 9.2.1
orclmaxlogfiles attribute, 9.1.3, 24.2.2, 42.1.6, 42.2.1, 43.2.6, 43.3.7
orclmaxlogfilesize attribute, 9.1.3, 24.2.2, 42.1.6, 42.2.1, 43.2.6, 43.3.7
orclmaxserverresptime attribute, 9.1.3, 9.2.1
orclMaxTcpIdleConnTime attribute, 9.1.4
orclMemberOf attribute, Preface, 14.1.5
orclMemberOf attribute, in search filters, 14.1.5
orclnonsslport attribute, 9.1.3
ORCLNT algorithm, 31.3.1
orclnwrwtimeout attribute, 9.1.3, 9.2.1
new location in 11g, A.2
orclOidComponentName attribute, 42.1.6
orclOidInstanceName attribute, 42.1.6
orcloptcontainsquery attribute
new location in 11g, A.2
orcloptracklevel attribute, 9.1.3, 25.5.2, 25.5.2
new location in 11g, A.2
orcloptrackmaxtotalsize attribute, 9.1.3, 25.5.2
new location in 11g, A.2
orcloptracknumelemcontainers attribute, 9.1.3, 25.5.2
orclpilotmode attribute, 42.1.2
in pilot mode, 43.3.4
orclpkimatchingrule attribute, 9.1.4, 9.2.2, 33.1.1
new location in 11g, A.2
orclpluginworkers attribute, 9.1.3, 9.2.1
orclprivilegegroup object class, 3.1.4, 14.1.2.2, 30.1.1.4.2
and dynamic groups, 14.1.2.2
orclpwdaccountunlock user attribute, 12.2.2
orclpwdAllowHashCompare password policy attribute, 29.1.5
orclpwdAlphaNumeric password policy attribute, 29.1.5
orclpwdencryptionenable
checking value
by using ldapsearch command, 31.7
orclpwdEncryptionEnable password policy attribute, 29.1.5
orclpwdencryptionenable realm attribute
when provisioning users, 31.7
orclpwdGraceLoginTimeLimit password policy attribute, 29.1.5
orclpwdIllegalValues password policy attribute, 29.1.5
orclpwdipaccountlockedtime operational attribute, 29.1.6
orclpwdipfailuretime operational attribute, 29.1.6
orclpwdIPLockout password policy attribute, 29.1.5
orclpwdIPLockoutDuration password policy attribute, 29.1.5
orclpwdIPMaxFailure password policy attribute, 29.1.5
orclPwdMaxInactivityTime, 29.1.5
orclpwdMaxRptChars password policy attribute, 29.1.5
orclpwdMinAlphaChars password policy attribute, 29.1.5
orclpwdMinLowercase password policy attribute, 29.1.5
orclpwdMinSpecialChars password policy attribute, 29.1.5
orclpwdMinUppercase password policy attribute, 29.1.5
orclpwdPolicyEnable password policy attribute, 29.1.5
orclPwdTrackLogin
password policy attribute, 29.1.5, 29.1.5
orclpwdverifierparams
default DN, 31.7
orclrefreshdgrmems attribute, 9.1.4, 14.1.2.1
new location in 11g, A.2
orclReplAgreementEntry objectclass, 42.1.3
orclreplautotune attribute, 42.1.6, 43.1.2, 43.2.6, 43.3.7
orclreplicadn attribute, 42.1.3.1
orclreplicaid attribute, 42.1.2, 42.2.1, 43.2.9, 43.3.3
orclreplicasecondaryuri attribute, 42.1.2, 42.2.1, 43.2.9, 43.3.3
orclreplicastate attribute, 40.1.3, 42.1.2, 42.2.1, 43.2.9, 43.3.3
monitoring value, 40.5.2.1.7
orclreplicationid attribute, 42.1.3.1
orclreplicationprotocol attribute, 42.1.3.1
orclreplicationstate attribute, 42.1.6, 42.2.1, 43.2.7, 43.3.7
orclreplicatype attribute, 42.1.2, 42.2.1, 43.2.9, 43.3.3
in pilot mode, 43.3.4
orclreplicauri attribute, 42.1.2, 42.2.1, 43.2.9, 43.3.3
orclreplmaxworkers attribute, 42.1.6, 42.2.1, 43.1.2, 43.2.6, 43.3.7
orclreplusesasl, 42.1.6, 42.2.1, 43.2.6, 43.3.7
orclreqattrcase attribute, 9.1.3, 9.2.1
orclrevpwd attribute, 31.1.1, 31.7
orclRIattr attribute, 22.1
orclrienabled attribute, 9.1.4, 9.2.2, 22.1
orclsaslauthenticationmode attribute, 9.1.3, 33.3, 33.5
new location in 11g, A.2
orclsaslcipherchoice attribute, 9.1.3, 33.3, 33.5
new location in 11g, A.2
orclsaslmechanism attribute, 9.1.3, 33.3, 33.5
new location in 11g, A.2
orclsdumpflag attribute, 9.1.3, 42.1.6, 42.2.1, 43.2.6, 43.3.7
new location in 11g, A.2
orclservermode attribute, 9.1.3
new location in 11g, A.2
setting by using ldapmodify command, 15.2.2
orclserverprocs attribute, 9.1.3, 9.2.1
new location in 11g, A.2
orclsizelimit attribute, 9.1.3, 42.1.6, 42.2.1, 43.1.4.3, 43.1.4.3, 43.2.6, 43.3.7
managing by using ldapmodify, 43.3.12
new location in 11g, A.2
orclskewedattribute attribute, 9.1.4, 9.2.2
new location in 11g, A.2
orclskiprefinsql attribute, 9.1.4, 9.2.2
new location in 11g, A.2
orclsslauthentication attribute, 9.1.3, 27.1.3, 27.2.3, 27.4
new location in 11g, A.2
orclsslciphersuite attribute, 9.1.3, 27.1.1, 27.2.3, 27.4
orclsslenable attribute, 9.1.3, 27.1.5, 27.2.3, 27.4
new location in 11g, A.2
orclsslinteropmode attribute, 9.1.3, 27.1.7, 27.4, 27.4
orclsslport attribute, 9.1.3
orclsslversion attribute, 9.1.3, 27.2.3, 27.4
new location in 11g, A.2
orclsslwalleturl attribute, 9.1.3, 27.1.5, 27.2.3, 27.4
new location in 11g, A.2
orclstatsdn attribute, 9.1.4, 9.2.2
new location in 11g, A.2
orclstatsflag attribute, 9.1.3, 25.5.1, 25.5.4
new location in 11g, A.2
orclstatslevel attribute, 9.1.3, 25.5.3
new location in 11g, A.2
orclstatsperiodicity attribute, 9.1.3, 25.5.1
new location in 11g, A.2
orclsuname attribute, 12.7
orclsupassword attribute, 12.7
orclthreadspersupplier, 43.1.2
orclthreadspersupplier attribute, 42.1.6, 42.2.1, 42.2.1, 43.1.2, 43.2.6, 43.2.6, 43.3.7
orcltimelimit attribute, 9.1.3
new location in 11g, A.2
orcltlimitmode attribute, 9.1.4
new location in 11g, A.2
orcluniqueattrname attribute in attribute uniqueness constraint entries, 19.1
orcluniqueenable attribute in attribute uniqueness constraint entries, 19.1, 19.5.6
orcluniqueobjectclass attribute in attribute uniqueness constraint entries, 19.1
orcluniquescope attribute in attribute uniqueness constraint entries, 19.1
orcluniquesubtree attribute in attribute uniqueness constraint entries, 19.1
orclupdateschedule attribute, 42.1.3.1, 42.2.2, 43.3.5
orclUserV2 attribute, 37.3.3.1.2
ORCLWEBDAV algorithm, 31.3.1
organization attribute, 3.4.3
organizationalUnitName, 3.4.3
ou attribute, 3.4.3

P

parameters
for an active instance, modifying, 27.2.2
partial replication, 6.2.1
filtering, 40.1.9
partitioning, 3.9, 3.9.2, 3.9.2
password
EMD administrator
changingby using WLST, 12.10
ODSSM administrator
changing by using WLST, 12.11
replication administrator
changing by using remtool command, 43.3.13
superuser
changing by using Fusion Middleware control, 12.5
password encryption
password policy attribute, 29.1.5
password expiration
enforced by password policies, 29.1.4
operational attribute, 29.1.6
password expiry warning
enforced by password policies, 29.1.4
password length
enforced by password policies, 29.1.4
password policies, 29
about, 29.1
applicable operations on userpassword attribute, 29.1.4
applied to subtrees, 29.1.3
applied to superuser, 29.1.4
applying to subtree
by using ldapmodify command, 29.3.3
assigning to subtree
by using ODSM, 29.2.3
attributes, 29.1.5
creating
by using ldapadd command, 29.3.2
by using ODSM, 29.2.3
creating by using ODSM, 29.2.3
default, 29.1.4, 29.1.4
defined, 29.1
definition, 29.1.1
disabling, 29.1.3
DN, 29.1.2
enabling, 29.1.2
enforced by Oracle Internet Directory, 29.1.1
entry
defined, 3.1.4
error messages, S.1.6.2
fine-grained, 29.1.3
granularity, 29.1.3
management, 3.7
managing by using command-line tools, 29.3
modifying
by using ODSM, 29.2.2
modifying by using ODSM, 29.2.2
plug-in, 44
how it works, 44.1
rules, 29.1
runtime resolution by directory server, 29.1.3
setting
by using command-line tools, 29.3, 29.3.4
by using ldapmodify command, 29.3.4
steps to establish, 29.1.2
troubleshooting, S.1.6
verification by directory server, 29.1.7
verification of, 29.1.7
viewing
by using ldapsearch command, 29.3.1
by using ODSM, 29.2.1, 29.2.1
password policy entries
location, 29.1.3
master node version, 40.5.3
replication, 40.5.3
password reset
password policy attribute, 29.1.5
password syntax check
password policy attribute, 29.1.5
password verifier entry, defined, 3.1.4
password verifier profile entries
for application, 31.3.1
location, 31.3.1
password verifier profiles
for Oracle components
managing by using ldapmodify command, 31.5.2
searching by using ldapsearch command, 31.5.1
password verifier profiles for Oracle components
managing
by using ODSM, 31.4
password verifiers, 31
authenticating to Oracle components
managing, 31.3
default for Oracle components, 31.3.3
dynamic
generating, 31.6
for authenticing to the directory, 31.1
password wallets
troubleshooting, S.1.15
password-based authentication, 33.1.1
passwords
command-line prompt, 7.5.1
database, 12.8
for guest users, 12.1
for proxy users, 12.1
for super users, 12.1
for superuser, 12.1
forcing changes by using command-line tools, 12.2.3
integrity
MD4, 31.1.2
managing, 12
policies
setting by using command-line tools, 29.3, 29.3
protection, 3.7
changing by using ldapmodify command, 31.2
changing scheme, 31.1
default verifiers for Oracle components, 31.3.3
managing by using ldapmodify command, 31.2
MD5, 31.1.2, 31.1.2, 31.3.1, 31.3.1
O3LOGON, 31.3.1
ORCLLM, 31.3.1
ORCLNT, 31.3.1
ORCLWEBDAV, 31.3.1
SASL/MD5, 31.3.1
SHA-1, 31.1.2, 31.1.2, 31.3.1, 31.3.1
SMD5, 31.1.2, 31.1.2
SSHA, 31.1.2, 31.1.2
UNIX Crypt, 31.1.2, 31.3.1
retrieving Java Key Store, O.2
to Oracle components
storing, 31.3.2
to Oracle data servers, changing, 12.8, 12.8
passwords and accounts, managing, 12.1
PATH environment variable, 7.5
required by bulk tools, 15.1
path names, 10g versus 11g, A.6
peer-to-peer replication, 6.2.4
performance
add or modify, S.1.7.2
by using orclEntryLevelACI, 30.1.1.2
replication and, 6.1
search, S.1.7.1
troubleshooting, S.1.7
performance monitoring garbage collector, 36.1.1.2.2
performance page metrics
Fusion Middleware Control, 25.3.2
permissions, 3.7, 30.1
granting
by using ODSM, 30.2
pilot mode, 43.1.5
specifying by using remtool command, 43.3.4
pilotstarttime attribute, 42.1.2
in pilot mode, 43.3.4
PKE matching rules, 9.2.2
PKI authentication, 27.1
PL/SQL plug-in developer's reference, F
plug-in configuration entries
adding by using ldapmodify command, 45.3.2
plug-in framework, 45.1.6
plug-in threads
per server process
tuning, 9.2.1
plug-ins
benefits, 45.1.4
configuration entries, 45.3.1
creating, 45.2
creating by using ODSM, 45.4.1
deleting by using ODSM, 45.4.4
editing by using ODSM, 45.4.3
entry, 3.1.4
external authentication, 46, 46
for password policies, 44
garbage collection, 36.1.1.1
guidelines, 45.1.5
in replication environment, 45.1.8
languages supported, 45.1.2
managing by using ODSM, 45.4.1
password policy
how it works, 44.1
registering by using ODSM, 45.4.2
registering from command line, 45.3
supported operations, 45.1.7
point-to-point replication, 6.2.4
policies
identity management, 3.14.2.2
pooling, connection, 1.3.3.1
port configuration
troubleshooting, S.1.8
ports
assignment, 3.1.3
default
Oracle Internet Directory, 3.1.3
default, 10g versus 11g, A.3
non-SSL, 9.2.1
privileged, 7.2.8
SSL, 9.2.1
postinstallation tasks, 7.2, 7.2
precedence
at the attribute level, 30.1.4.1.2
at the entry level, 30.1.4.1.1
rules
ACL evaluation, 30.1.4.1
in conflicting access policies, 30.1.1.1
prescriptive access control, 30.1.1.2
Preserving case of required attribute name in search request, 9.2.1
previously used passwords
operational attribute, 29.1.6
privacy mode, 28.6.1
determining
by using ldapsearch, 28.7
enabling
by using ldapmodify command, 28.7
privacy, data, 3.7, 28.7
privilege groups, 30.1.1.4, 30.1.1.4, 30.1.1.4.2
associated with orclprivilegegroup object class, 30.1.1.4.2
defined, 3.1.4
privileged accounts, 12.1
privileged ports, 7.2.8
privileged user
access to data
prevented with Database Vault, 28.3
types, 29.1.4
privileges, 3.7, 30.1
privileges for user and group management
delegation of, 32.1.4
process control, 4
architecture, 4.1
best practices, 4.3.4
process management, 10g versus 11g, A.1
process monitoring, 4.3.4
processes
on ODSM home page, 25.4
properties
server
managing by using Fusion Middleware Control, 9.2.1
shared
managing by using Fusion Middleware Control, 9.2.2
proxy users, 33.1.2
managing
by using ldapmodify, 12.7
by using ODSM, 12.5
public key infrastructure, 27.1
public-key encryption
described, 27.1
purge queue, 43.1.4
purging change logs, 36.1.4
pwdaccountlockedtime operational attribute, 29.1.6
pwdAllowUserChange password policy attribute, 29.1.5
pwdchangedtime operational attribute, 29.1.6
pwdCheckSyntax password policy attribute, 29.1.5
pwdexpirationwarned operational attribute, 29.1.6
pwdExpireWarning password policy attribute, 29.1.5
pwdFailureCountInterval password policy attribute, 29.1.5
pwdfailuretime operational attribute, 29.1.6
pwdGraceLoginLimit password policy attribute, 29.1.5
pwdgraceusetime operational attribute, 29.1.6
pwdhistory operational attribute, 29.1.6
pwdInHistory password policy attribute, 29.1.5
pwdLockout password policy attribute, 29.1.5
pwdLockoutDuration password policy attribute, 29.1.5
pwdMaxAge password policy attribute, 29.1.5
pwdMaxFailure password policy attribute, 29.1.5
pwdMinAge password policy attribute, 29.1.5
pwdMinLength password policy attribute, 29.1.5
pwdMustChange password policy attribute, 12.2.3, 29.1.5
pwdpolicy entry, 12.2.3
pwdpolicy object class, 29.1.2
creating values
step in establishing policies, 29.1.2
pwdpolicysubentry attribute in subtree, 29.1.2
pwdreset operational attribute, 29.1.6

Q

queue statistics
viewing
by using Fusion Middleware Control, 43.2.10

R

RDNs. See relative distinguished names (RDNs)
read-only access
granting
by using ldapmodify command, 30.3.7
realms, 34
identity management
customizing, 34.2
default, 3.14.2.1, 34.1.5
defined, 3.14.2
implementation in Oracle Internet Directory, 34.1.4
in enterprise deployments, 34.1.2
in hosted deployments, 34.1.3
multiple in enterprise deployments, 34.1.2.2
planning, 34.1.1
single in enterprise, 34.1.2.1
realm-specific
Oracle Context, 34.1.4
password policy, 29.1.3
privileged user, 29.1.4
recovery features, in Oracle, 1.3.3.2
redefining mandatory attributes, 21.1.2.1
ref attribute, 9.1.5, 20.1
referential integrity, 9.2.2, 22
10g versus 11g, A.9
configuring specific attributes
by using catalog command, 22.5
defined, 22.1
disabling
by using ldapmodify command, 22.6
disabling by using Fusion Middleware Control, 22.3
enabling
by using Fusion Middleware Control, 22.2
by using ldapmodify command, 22.4
violations
detecting by using oiddiag command, 22.6
referral object class, 20.1
referrals, 3.9.2
client-side referral caching, 20.1
defined, 3.10
kinds, 3.10
refresh dynamic group membership, 14.1.2.1
registering with WebLogic server, 8.1.2, 8.1.4
relational databases contrasted to directories, 1.1.1
relative distinguished names (RDNs), 3.3.1
remtool
performing a rolling upgrade, Q.2
remtool command
adding an LDAP-based replica, 40.5.2.1.4
adding replica
replication setup, 40.5.2.2.3
Advanced Replication, C.2.2.3.2
backing up data
replication setup, 40.5.2.2.2
changing replication administrator's password, 43.3.13
replication setup, 40.1.2.2
adding replica, 40.5.2.2.3
backing up data, 40.5.2.2.2
specifying pilot mode, 43.3.4
troubleshooting, S.1.19
verifying replication, 43.3.11
viewing queue statistics, 43.3.11
repeated characters
password policy attribute, 29.1.5
replica details
configuring by using Fusion Middleware Control, 43.2.9
replica ID, 42.2.1, 43.2.9, 43.3.3
replica naming context object parameters, 43.3.6
replica naming context objects
viewing and modifying
by using Fusion Middleware Control, 43.2.3
replica primary URI, 42.2.1, 43.2.9, 43.3.3
replica secondary URI, 42.2.1, 43.2.9, 43.3.3
replica state, 43.2.9, 43.3.3
replica status, 42.2.1
replica subentry
configuring attributes by using ldapmodify command, 43.3.3
DN, 42.1.2, 43.3.3
example, 42.1.2
modifying by using Fusion Middleware Control, 43.2.4, 43.2.4
replica type, 42.2.1, 43.2.9, 43.3.3
replicas
defined, 6.2.4
replicated directories, conceptual discussion, 3.9
replication, 3.9.1
activate and inactivate, 42.2.1, 43.3.7
adding a new entry to a consumer, D.5.1
Advanced Database, 3.9.1
Advanced replication-based and LDAP-based, 6.2.3
agreement entry, 42.1.3
agreements, 6.2.4
example of, 42.1.7
and high availability, 6.3
and load balancing, 6.3
and local availability, 6.3
and performance, 6.1
and SSL, 40.1.8.2
authentication, 40.1.8.1
change logs in, 43.1.3
command-line setup
LDAP-based, 40.5
command-line tools, 40.1.2.2
comparing and reconciling inconsistent data, 43.4
configuring
Oracle Database Advanced Replication, C.2.2.3.2
conflicts
automatically resolve, 42.2.1, 43.2.6
levels of occurrence, 43.1.6.1
monitoring, 43.3.8
resolving manually, 43.3.9, 43.3.9
typical causes of, 43.1.6
converting Advanced Replication-based agreement to LDAP-based agreement, 40.2
deleting an entry, D.5.2
directory replication group (DRG), 6.2.4
enabling auditing, 23.4.3
failure tolerance, 6.1
fan-out, 6.2.4
filtering, 40.1.9
full, 6.2.1
groups
multimaster, 3.9.1
LDAP
filtering, 40.1.9.3
LDAP-based, 40.1.1
configuring, 40.1.7
deleting, 40.5.4
determining what is to be replicated, 43.1.1
installing and configuring, 40.5, 40.5
process, D.3
setting up, 40.3, 40.5.2
LDAP-based replication agreement
deleting, 43.2.5
load balancing, 6.1
loose consistency model, 6.2.5
managing and monitoring, 43
managing naming contexts and attributes, 40.1.9.5
modifying a DN, D.5.5
modifying an RDN, D.5.4
multimaster, 6.2.4
multimaster with fan-out, 6.2.7
naming context container entry, 42.1.4, 42.1.5
naming contexts
included and excluded, 40.1.9.1
partial, 6.2.1
optimization, 40.1.9.6
peer-to-peer, 6.2.4
point-to-point, 6.2.4
process, D.5, D.5.1, D.5.2, D.5.3, D.5.4, D.5.5
reasons for using, 6
security, 40.1.8
See also Advanced Replication, Oracle Database Advanced Replication-based Replication, LDAP-based replication
server
log file location, 24.1
setting up by using replication wizard in Fusion Middleware Control, 40.3
single master, 3.9.1
defined, 6.2.4
SSL mode, 40.1.8.2
transport mechanisms, 40.1.1
troubleshooting, S.1.12, S.1.12.4, S.1.12.5
with server chaining, 38.1.4
replication administrator password
changing by using remtool command, 43.3.13
replication agreement entry
DN, 42.1.3
replication agreements
attributes, 40.1.4
examples, 42.1.3.2
modifying by using Fusion Middleware Control, 43.2.4
on ODSM home page, 25.4
viewing by using Fusion Middleware Control, 43.2.4
replication and SSL, 40.1.8.2
replication architecture
LDAP-based, D.3
replication attributes
configuring, 42.2
replication auditing, 23.1.3
replication authentication, 40.1.8.1
replication bind DN password, 40.1.8.1
replication binds
SASL, 42.2.1, 43.3.7
replication bootstrap
troubleshooting, S.1.12.3
replication concepts, 6
replication configuration attributes, 42
command line, 42.3
replication configuration container attributes, 42.1.1
replication configuration container entry
example, 42.1.1
replication configuration set
DN, 42.1.6
replication configuration set DN, 43.3.7
replication conflicts
automatically resolve, 43.3.7
types, 43.1.6.1
replication cycle
entries to process, 43.2.6
maximum number of entries to process, 43.3.7
number of entries to process, 42.2.1
Replication Environment Management Tool
See remtool
replication failover, 41
described, 41.1
limitations and warnings, 41.1.1
stateless, 41.1.2
time-based, 41.3
types, 41.1.2
replication filtering, 40.1.9
examples, 40.1.9.3
rules, 40.1.9.2, 40.1.9.3
replication filtering examples, 40.1.9.4
replication frequency, 42.2.2, 43.3.5
Replication Management Tool, C.2.2.3
replication naming context container entry, 42.1.4
replication naming context object entry, 42.1.5
DN, 42.1.5
example, 42.1.5
replication objects
examples, 42.1.7
replication server
credentials, 40.1.8.1
in Oracle Internet Directory node, 3.1.1
starting
by using oidctl command, 8.4
with SSL-enabled directory server, 27.1.4
replication server connection, 43.3.5
keep alive, 40.3
replication server debug level, 43.2.6, 43.3.7
replication setup
customized settings, 40.5.2
human intervention queue schedule, 40.3
modifying by using Fusion Middleware Control, 43.2.4
restoring entries from other components, 40.5.2.1.8
tasks performed by remtool command, 40.1.2.2
viewing by using Fusion Middleware Control, 43.2.4
replication status, 42.2.1, 43.2.7, 43.3.7
replication type
choosing
by using Fusion Middleware Control, 40.3
replication wizard
See Fusion Middleware Control replication wizard
replication, 10g versus 11g, A.11
replication, basics, 6
Repository Creation Assistant (repca)
troubleshooting, S.1.12.2
resetting your password
by using self-service console, 12.3.3
resource access information, 3.15
resource information, 3.15
location in DIT, 3.15
resource type information, 3.15
restarting server
by using Fusion Middleware Control, 8.2.4
by using opmnctl command, 8.3.9
restricting ACIs users can add, 30.3.1
retry queue, 43.1.4
retry timeout
tuning, 9.2.1
rolling upgrade, Q
Root DSE entry
defined, 3.1.4
root Oracle Context, 34.1.4
rotation
log files, 24.2.2

S

SASL
clients enabled with
Digest-MD5 authentication to directory server, 33.1.4
external authentication, 33.1.4
SASL for replication binds, 42.2.1, 43.2.6, 43.3.7
SASL/MD5, for generating password verifier, 31.3.1
scalability, of Oracle Internet Directory, 1.3.3.1
schema, 21
administration, 21
definitions in subSchemaSubentry, 21.1.1
directory, defined, 3.1.4
for orclACI, H.1
for orclEntryLevelACI, H.2
search
and compare operations, 3.4.5
configuring, 8.2.1
depth, specifying, 13.2.2
filters
maximum size, 9.2.2
processing in memory, 9.2.2
for attributes by using ODSM, 21.2.10
for object classes
by using ODSM, 21.2.1
maximum entries returned, 9.2.1
maximum time to complete, 9.2.1
processing, 3.2
results, specifying maximum number of entries returned, 13.2.2
skip referral for, 9.2.2
specifying maximum number of entries returned, 13.2.2
search request
preserving case of attribute name, 9.2.1
secure
port 3133, 27.1.3
secure mode
running server instances in, 27.1.3
Secure Sockets Layer
See SSL
security, 1.3.3.3
credentials, stored in an external repository, 46
for different clients, 27.1.3
in LDAP Version 3, 1.2.2
in replication, 40.1.8
SSL parameters for different clients, 27.1.3
Security Administrators Group, 32.4.1
security and refresh events garbage collector, 36.1.1.2.2
security event tracking
configuring
by using ldapmodify command, 25.5.2
security in Oracle Internet Directory, 3.7
self-service console
of Delegated Administration Services, 12.3.1
resetting your password, 12.3.3
unlocking accounts by using, 12.3.1
self-signed wallet for SSL configuration
creating
by using Fusion Middlware Control, 27.2.1
selfwrite access
to groups
granting by using ldapmodify command, 30.3.7
sensitive attributes
list, 28.6.1
stored in encrypted format, 28.6
server
instances
running in secure mode, 27.1.3
restarting
by using Fusion Middleware Control, 8.2.4
by usingopmnctl command, 8.3.9
starting
by using Fusion Middleware Control, 8.2.2
by using opmnctl command, 8.3.7
stopping
by using Fusion Middleware Control, 8.2.3
by usingopmnctl command, 8.3.8
server chaining, 38
10g versus 11g, A.10
attribute mapping, 38.3.3
configuration entry attributes, 38.3.1
configuring
by using ldapadd and ldapmodify commands, 38.2.2
by using ODSM, 38.2.1
debugging, 38.4
described, 38.1
entries
DNs, 38.2
examples, 38.3.4
Microsoft Active Directory plug-in for password change notification, 38.5
plug-in for password change notification
Enterprise User Security, 38.5
supported directory servers, 38.1.1
supported operations, 38.1.3
troubleshooting, S.1.20
user and group containers, 38.3.2
with replication, 38.1.4
with SSL, 38.1
server instances
in standalone mode, B.1
server manageability
See Oracle Internet Director Server Manageability
server mode, 9.2.1
server plug-ins, 45
defined, 45.1
languages supported, 45.1.2
See also plug-ins
server processes, 4.1
number
tuning, 9.2.1
server properties
managing
by using Fusion Middleware Control, 9.2.1
server properties page
Fusion Middleware Control, 9.2.1
logging tab
Fusion Middleware Control, 24.2.1
server response time
maximum
tuning, 9.2.1
server response to dispatcher
tuning, 9.2.1
server startup
troubleshooting, S.1.10
server statistics
monitored by server manageability framework, 25.1.1
servers
monitoring, 25.1.2
servers. See also directory servers, directory replication servers, or directory integration platform servers
Service Registry, 3.12
Service to Service Authentication, 3.12
SHA-1
for password encryption, 31.1.2, 31.3.1
SHA-2 algorithm, 31.1
SHA256, 31.1.2, 31.3.1
SHA384, 31.1.2, 31.3.1
SHA512, 31.1.2, 31.3.1
shared properties
managing
by using Fusion Middleware Control, 9.2.2
simple authentication, 33.1.1, 33.1.1
Simple Authentication and Security Layer (SASL)
authentication, 33.1.1
clients enabled with
Digest-MD5 authentication to directory, 33.1.4
external authentication, 33.1.4
how it works, 33.1.4
in LDAP Version 3, 1.2.2
Single Sign-On
understanding integration with Oracle Directory Services Manager, 7.4.1.3
single-master replication
defined, 6.2.4
single-valued attributes, 3.4.2, 3.4.2
converting to multivalued, 21.1.3.2
skewed attributes, 9.2.2
skip referral for search, 9.2.2
smart knowledge references (referrals)
configuring, 20.2, 20.2
SMD5, 31.3.1
for password encryption, 31.1.2
sn entry attribute
adding, 13.3.4
special purpose directories, 1.1.2
sponsor node
Advanced Replication, C.2.3.4
sqlnet.ora, configuring for Advanced Replication, C.2.2.3.1
SSHA, 31.3.1
for password encryption, 31.1.2
SSHA256, 31.1.2, 31.3.1
SSHA384, 31.1.2, 31.3.1
SSHA512, 31.1.2, 31.3.1
SSL, 27
and replication, 40.1.8.2
attributes
listing by using ldapsearch command, 27.4
authentication
configuring by using ldapmodify command, 27.4
authentication modes, 27.1.3
setting by using Fusion Middleware Control, 27.2.3
testing, 27.6
cipher suites, 27.1.1
configuring by using ldapmodify command, 27.4
supported in Oracle Internet Directory, 27.1.1
client scenarios, 27.1.3, 27.1.3
configuration
testing by using ldapbind command, 27.6.1
configuration parameters, 27.1.3
configuration service, 27.1.5
configuring, 27.2.2
by using ldapmodify command, 27.4
by using WLST, 27.3
connection failures
interoperability mode, 27.1.7
described, 27.1
enabling
by using Fusion Middleware Control, 27.2.3
by using ldapmodify command, 27.4
handshake, 27.1.1
interoperability mode, 27.1.7
configuring by using ldapmodify command, 27.4
setting by using ldapmodify command, 27.7
managing, 27
mode
replication, 40.1.8.2
on a non-SSL port, 27.1.8
parameters, 27.1.3, 27.2.3
configuring by using command-line tools, 27.4
configuring by using Fusion Middleware Control, 27.2.2
configuring by using Oracle Enterprise Manager, 27.2.2
different directory server instances, 27.1.3
replication and, 40.1.8.2
replication issues, 27.1.4
server cipher suite
setting by using Fusion Middleware control, 27.2.3
strong authentication, 27.1
testing
by using ldapbind command, 27.6
by using ODSM, 27.5
version
configuring by using ldapmodify command, 27.4
setting by using Fusion Middleware Control, 27.2.3
with server chaining, 38.1
SSL port, 3.1.3, 9.2.1
SSL wallet URL
setting
by using Fusion Middleware Control, 27.2.3
by using ldapmodify command, 27.4
stack dumps
generate, 43.2.6, 43.3.7
generating, 42.2.1
standalone mode, B.1
starting and stopping the Oracle stack, P
starting Oracle Internet Directory
concepts, 4.3.2
starting replication server
by using oidctl command, 8.4
starting server
by using Fusion Middleware Control, 8.2.2
by using opmnctl command, 8.3.7
starting the Oracle stack, P.1
startTLS, 27.1.8
static groups, 14.1.1
creating
by using ODSM, 14.2.1
modifying
by using ODSM, 14.2.2
modifying by using ldapmodify command, 14.3.2
schema elements for creating, 14.1.1.1
statistics collection
configuring
by using Fusion Middleware Control, 25.2.2
by using ldapmodify command, 25.5.1
configuring by using Fusion Middleware Control, 25.2.1
configuring user
by using ldapmodify command, 25.5.5
users
configuring by using ldapmodify command, 25.5.3
statistics collector
DN, 36.1.3
entry for, 36.1.3
managing behavior, 36.1.1.2.3
statistics configuration
viewing
by using ldapsearch command, 25.5.1
statistics information
home page
Fusion Middleware Control, 25.3
ODSM, 25.4
home page, ODSM, 25.4
viewing
by using Fusion Middleware Control, 25.3
statistics reports
viewing
by using oiddiag command, 25.6
status
viewing
by using opmnctl command, 8.3.6
viewing by using Fusion Middleware Control, 8.1.4
stopping server, 4.3.3
by using Fusion Middleware Control, 8.2.3
by usingopmnctl command, 8.3.8
stopping the Oracle stack, P.2
store-and-forward transport, in Oracle Database Advanced Replicaton, D.1
strong authentication, 33.1.1
structural object class type, 3.5.2.1
structural object classes, 3.5.2.1
converting, 21.1.2.2
type, 3.5.1
structure rules, not enforced by Oracle Internet Directory, 3.5.2.2
subclasses, 3.5.1, 3.5.1
subentries, definition, 21.1.1
subentry attribute, 9.1.5
subject selectors, 30.3.6
subordinate naming contexts, 3.10
subSchemaSubentry
holding schema definitions, 21.1.1
subtree level search, 13.2.2
Sun Java System Directory Server
with server chaining, 38.1.1
super user password, resetting, 12.9
super users
managing
by using ldapmodify command, 12.7
superclasses, 3.5.1, 3.5.1
and inheritance, 21.1.2
superior knowledge references (referrals), 3.10
superuser
account lockout, 29.1.4
definition, 12.1
managing by using ldapmodify, 12.7
password
changing by using Fusion Middleware Control, 12.5
resetting by using oidpasswd, 12.9
subject to password policies, 29.1.4
suppliers
defined, 6.2.4
syncprofilebootstrap command
migrating third-party LDAP data, 37.2.2
syntax
attribute, 3.4.4, 3.4.4
stored in schema, 21.1.1
syntaxes
cannot add to subSchemaSubentry, 21.1.1
new, adding, 3.4.4
viewing
by using by using ldapsearch command, 21.3.16
by using ldapsearch command, 21.3.16
by using ODSM, 21.2.17
system components
creating by using opmnctl command, 8.3.1
creating Oracle Internet Directory, 8.1.2
defined, 2.2
system operational attributes
setting, 9.1, 9.1, 9.1
by using ldapmodify, 9.4, 9.4
by using ODSM, 9.2, 9.2
viewing, 9.1
system resource events garbage collector, 36.1.1.2.2

T

table space encryption
described, 28.1
enabling or disabling
on databases used by Oracle Internet directory, 28.2
TCP/IP Problems, S.1.5
telephoneNumber attribute, 3.4.3
testing SSL configuration
by using ldapbind command, 27.6.1
by using ODSM, 27.5
threads
in logging, 24.1.2.1
plug-in
tuning, 9.2.1
threads per supplier
apply, 42.2.1, 43.2.6, 43.3.7
transport, 42.2.1, 43.2.6, 43.3.7
time when account locked
operational attribute, 29.1.6
time-based change log purging, 36.1.4
timeout
connection
tuning, 9.2.1
TLS and SSL protocols, 27.1.2
TNS_ADMIN environment variable, 7.5
tnsnames.ora
configuring for Advanced Replication, C.2.2.3.1
tombstone garbage collector, 36.1.1.2.2
top object class, 3.5.1, 3.5.2.3
optional attributes in, 3.5.2.3
trace information
force flushing
to log file, 24.3.4
trace messages
in log files, 24.1.2.3
trace objects
log messages
storage as, 24.1.2.1
tracing function calls, 24.3.2
tracing LDAP operations, 24.3.3
tracking of user's last login time
password policy attribute, 29.1.5
transport threads per supplier, 42.2.1
tree view
browsing, 13.2.2
selecting root of search, 13.2.2
troubleeshooting
replication, S.1.12.5
troubleshooting, S
bulk tools, S.1.17
bulkload command, S.1.16
catalog command, S.1.18
change log garbage collection, S.1.13
database server performance, S.1.7.3
directory server instance startup, S.1.10, S.1.11
dynamic password verifiers, S.1.14
Fusion Middleware Control, S.1.22
getting a core dump, S.1.4
getting a stack trace, S.1.4
ODSM, S.1.23
password policies, S.1.6
password wallets, S.1.15
performance, S.1.7
port configuration, S.1.8
remtool command, S.1.19
replication, S.1.12, S.1.12.4
replication bootstrap, S.1.12.3
Repository Creation Assistant (repca), S.1.12.2
server chaining, S.1.20
typical problems in Oracle Internet Directory, S
Trusted Application Administrators Group, 32.3.4
tuning, 35
database connections, 9.2.1
dispatcher threads, 9.2.1
enable or disable change log generation, 9.2.1
enable or disable entry cache, 9.2.2
idle connection timeout, 9.2.1
maximum entries in entry cache, 9.2.2
maximum plug-in threads per server process, 9.2.1
network retry timeout, 9.2.1
privilege group membership cache
tuning, 9.2.2
server processes, 9.2.1
server response time
maximim, 9.2.1
types
of attributes, 3.4

U

Unicode Transformation Format 8-bit (UTF-8)
uniqueness constraints
orclcommonusernickname attribute, 19.5.1
UNIX crypt
for password encryption, 31.1.2, 31.3.1
unlocking accounts, 12.2.2
by using self-service console, 12.3.1, 12.3.2
unspecified access, 30.1.2.3
uppercase characters
password policy attribute, 29.1.5
Uptime
on ODSM home page, 25.4
used passwords
password policy attribute, 29.1.5
user
names and passwords, managing
by using ldapmodify, 12.7
user account
unlocking, 12.2.2
user and group containers
server chaining, 38.3.2
user certificates
searching for, K
user DN, 9.2.2
user entry attributes, 12.2.1
User Management Application Administrators Group, 32.3.3
user must reset password
operational attribute, 29.1.6
User Proxy Privilege Group, 32.4.4
user statistics collection
configuring
by using ldapmodify command, 25.5.3, 25.5.5
usercertificate attribute, K
userpassword attribute
adding, 13.3.4
applicable operations
in password policies, 29.1.4
hash values, 37.2.1
of entry, 31.1.1
userpassword hashing algorithhm, 31.1
userpassword parameter, 31.7
users
entries
adding by using ldapadd, 13.3.4
modifying by using ldapmodify, 13.3.5
names and containment, planning, 5.3
proxy, 33.1.2
users to always audit, 23.2
UTF-8. See Unicode Transformation Format 8-bit

V

Verifier Services Group, 32.4.3
verifying replication
by using remtool, 43.3.11
version information
viewing by using ODSM, S.1.21
viewing all directory attributes by using ODSM, 21.2.9
viewing properties of object classes by usingODSM, 21.2.5
viewing queue statistics
by using remtool, 43.3.11
viewing schema
by using ldapsearch command, 21.3.1
viewing syntaxes
by using ldapsearch command, 21.3.16
virtual IP addresses, 10.2

W

wallets
creating by using Fusion Middlware Control, 27.2.1
creating with WLST, 27.3
for replication identity
pathname, 40.1.8.1
self-signed
creating by using Fusion Middleware Control, 27.2.1
with SSL, 27.1.5
WebLogic domain
registration with, 8.1.2
WebLogic Scripting Tool See WLST
WebLogic Server Administrative Console
default port, 7.2.5
WebLogic Server Domain
defined, 2.1
WebLogic Server Home
defined, 2.5
wildcards, in setting access control policies, 30.3.4
wizards
replication, 42.2.2
WLST
changing EMD administrator password, 12.10
changing ODSSM administrator password, 12.11
configuring SSL, 27.3
defined, 2.11, 7.5.3
managing auditing, 23.3
managing configuration attributes by using, 9.3
worker threads
managing, 43.1.2
maximim number, 42.2.1
maximum number, 43.3.7
replication, 43.1.2

X

X509 certificates
in wallets, 27.1.5