Oracle Internet Directory Application Developer's Guide -- Index

389 port, A-9, A-11

636 port, A-9, A-11

abandoning an operation, 7-46

access control, 2-6, 2-8

and authorization, 2-8

access control information (ACI), 2-9

attributes, 2-8

directives

format, 2-9

Access Control List (ACL), 2-8

access control lists (ACLs), 2-8

ACI. See access control information (ACI)

ACLs. See Access Control List (ACL)

add.log, A-24

administration tools

ldapadd, A-22

ldapaddmt, A-24

ldapbind, A-26

ldapcompare, A-28

ldapdelete, A-30

ldapmoddn, A-31

ldapmodify, A-33

ldapmodifymt, A-38

ldapsearch, A-40

agent tools, A-45

agents

uploading agent file, A-58

anonymous authentication, 2-7

applications, building

with the C API, 7-70

attribute options

searching for by using ldapsearch, A-43

attribute values, replacing, A-36

attributes

adding

by using ldapadd, A-22

concurrently, by using ldapaddmt, A-24

to existing entries, A-22

attribute options

searching for by using ldapsearch, A-43

deleting

by using ldapmodify, A-36

in LDIF files, A-2

types, 2-5

values, 2-5

deleting, A-36

authentication, 2-6, 2-7

anonymous, 2-7

certificate-based, 2-7

Kerberos, A-23, A-25, A-30

modes, SSL, 7-2

one-way SSL, 2-8

options, 2-7

password-based, 2-7

PKI, 2-9

SSL, 2-7, 2-8, 7-2

none, 7-2

one-way, 7-2

two-way, 7-2

with ldapadd, A-24

with ldapaddmt, A-26

with ldapbind, A-27

with ldapmodify, A-34

with ldapmodifymt, A-40

strong, 2-7

to a directory server

enabling, 2-15

enabling, by using DBMS_LDAP, 2-17

enabling, by using the C API, 2-16

to the directory, 7-18

two-way SSL, 2-8

authorization, 2-6, 2-8

authorization ID, 2-7

base search, A-41

bootstrap command, in Directory Integration and Provisioning Assistant, A-49

bulk tools, 1-11

C API, 7-1

functions

abandon, 7-46

abandon_ext, 7-46

add, 7-40

add_ext, 7-40

add_ext_s, 7-40

add_s, 7-40

compare, 7-31

compare_ext, 7-31

compare_ext_s, 7-31

compare_s, 7-31

count_entries, 7-55

count_references, 7-55

count_values, 7-59

count_values_len, 7-59

delete, 7-42

delete_ext, 7-42

delete_ext_s, 7-42

delete_s, 7-42

dn2ufn, 7-61

err2string, 7-50

explode_dn, 7-61

explode_rdn, 7-61

extended_operation, 7-44

extended_operation_s, 7-44

first_attribute, 7-57

first_entry, 7-55

first_message, 7-53

first_reference, 7-55

get_dn, 7-61

get_entry_controls, 7-62

get_option, 7-10

get_values, 7-59

get_values_len, 7-59

init, 7-9

init_ssl call, 7-3

modify, 7-34

modify_ext, 7-34

modify_ext_s, 7-34

modify_s, 7-34

msgfree, 7-47

msgid, 7-47

msgtype, 7-47

next_attribute, 7-57

next_entry, 7-55

next_message, 7-53

next_reference, 7-55

open, 7-9

parse_extended_result, 7-50

parse_reference, 7-64

parse_result, 7-50

parse_sasl_bind_result, 7-50

rename, 7-37

rename_s, 7-37

result, 7-47

sasl_bind, 7-18

sasl_bind_s, 7-18

search, 7-26

search_ext, 7-26

search_ext_s, 7-26

search_s, 7-26

search_st, 7-26

set_option, 7-10

simple_bind, 7-18

simple_bind_s, 7-18

unbind, 7-24

unbind_ext, 7-24

unbind_s, 7-24

value_free, 7-59

value_free_len, 7-59

reference, 7-4

sample search tool, 7-71

sample usage, 7-65

summary, 7-4

usage with SSL, 7-65

usage without SSL, 7-66

Catalog Management Tool

syntax, A-20

Catalog Management tool

syntax, A-20

catalog.sh

syntax, A-20

catldap.sql, 2-13

certificate authority, 2-7

certificate-based authentication, 2-7

certificates, 2-7

change logging, A-9

change logs

flag, A-8

toggling, A-8

change types, in ldapmodify input files, A-35

changetype attribute

add, A-35

delete, A-37

modify, A-35

modrdn, A-37

children of an entry, listing, 7-31

command-line tools

Directory Integration and Provisioning Assistant, A-46

ldapadd, A-22

ldapaddmt, A-24

ldapbind, A-26

ldapcompare, A-28

ldapcreateconn.sh, A-59

ldapdelete, A-30

ldapmoddn, A-31

ldapmodify, A-33

ldapmodifymt, A-38

ldapsearch, A-40

ldapUploadAgentFile.sh, A-58

schemasync, A-63

stopodiserver.sh, A-62

syntax, A-19

components

Oracle Internet Directory SDK, 1-2

configuration set entries

modifying, A-18

overriding user-specified, A-10

controls, working with, 7-16

creating an integration profile, A-59

DAP Information Model, 2-4

DAS units, 6-2

DAS URL Parameter Descriptions, 10-5

DAS URL Parameters, 6-5

DAS URL parameters, 10-3

data

integrity, 2-6, 2-9

privacy, 2-6, 2-9

data-type summary, 8-6

DBMS_LDAP

about, i-xxvii

sample usage

about, B-1

for a search, B-10

from a database trigger, B-2

Java sample code, B-33

DBMS_LDAP package, i-xxvii

searching by using, 2-17

DBMS_LDAP_UTL

about, 9-1

data-types, 9-6, 9-50

function return codes, 9-4, 9-47

group-related subprograms

about, 9-2

function create_group_handle, 9-24

function get_group_dn, 9-28

function get_group_properties, 9-26

function set_group_handle_properties, 9-25

miscellaneous subprograms

about, 9-3

function check_interface_version, 9-46

function create_mod_propertyset, 9-43

function get_property_names, 9-39

function get_property_values, 9-40

function get_property_values_len, 9-41

function normalize_dn_with_case, 9-38

function populate_mod_propertyset, 9-44

procedure free_handle, 9-46

procedure free_mod_propertyset, 9-45

procedure free_propertyset_collection, 9-42

subscriber-related subprograms

about, 9-3

function create_subscriber_handle, 9-30

function get_subscriber_dn, 9-33

function get_subscriber_properties, 9-31

user-related subprograms

about, 9-2

function authenticate_user, 9-8

function check_group_membership, 9-19

function create_user_handle, 9-10

function get_group_membership, 9-21

function get_user_dn, 9-17

function get_user_extended_properties, 9-16

function get_user_properties, 9-12

function locate_subscriber_for_user, 9-20

function set_user_handle_properties, 9-11

function set_user_properties, 9-14

debug

log files, viewing, A-10

default port

number, A-9, A-11

Delegated Administration Services, 6-2

dependencies and limitations, 7-84

C API, 7-84

DES40 encryption, 2-9

directives, 2-9

Directory Information Tree, 2-3

directory information tree (DIT), 2-2

Directory Integration and Provisioning Assistant

bootstrap command, A-49

what it does, A-46

directory integration and provisioning server

registration tool, A-64

starting, A-12

stopping, A-16

directory replication server

starting, A-10, A-11

stopping, A-11

directory server discovery, 3-13

directory servers

restarting, A-17

starting

mandatory arguments, A-9

syntax, A-7

with default configuration, A-10

stopping, A-9

distinguished names, 2-2

components of, 2-3

format, 2-3

in LDIF files, A-2

DNs. see distinguished names.

documentation, related, i-xxviii

encryption

DES40, 2-9

levels available in Oracle Internet Directory, 2-9

options for passwords, 2-10

passwords, 2-10

default, 2-10

MD4, 2-10

MD5, 2-10

SHA, 2-10

UNIX crypt, 2-10

RC4_40, 2-9

entries

adding

by using ldapadd, A-22

by using ldapaddmt, A-24

deleting

by using ldapdelete, A-30

by using ldapmodify, A-37

distinguished names of, 2-2

locating by using distinguished names, 2-3

modifying

by using ldapmodify, A-33

concurrently, by using ldapmodifymt, A-38

naming, 2-2

reading, 7-31

searching

base level, A-41

by using ldapsearch, A-40, A-58, A-59

one-level, A-41

subtree level, A-41

errors

handling and parsing results, 7-50

exception summary, 8-5

filters, 2-21

IETF-compliant, A-40

ldapsearch, A-43

formats, of distinguished names, 2-3

group entries

creating

by using ldapmodify, A-36

header files and libraries, required, 7-71

history of LDAP, 2-2

index

StopOdiServer.sh, A-62

integration profiles

creating, A-59

integrity, data, 2-9

interface calls, SSL, 7-3

Java, 1-2, 2-12

Java API reference

class descriptions

Property class, 3-6

PropertySet class, 3-6

PropertySetCollection class, 3-6

JNDI, 1-2, 2-12

JPEG images, adding with ldapadd, A-24

Kerberos authentication, A-23, A-25, A-30

LDAP

functional model, 2-6

history, 2-2

information model, 2-4

messages, obtaining results and peeking inside, 7-47

naming model, 2-2

operations, performing, 7-26

search filters, IETF-compliant, A-40

security model, 2-6

server instances

starting, A-7

session handle options, 7-10

in the C API, 2-15

sessions

initializing, 2-13, 7-9

version 2 C API, 7-2

LDAP APIs, 1-6

LDAP Data Interchange Format (LDIF), A-2

syntax, A-2

LDAP Functional Model, 2-6

LDAP Models, 2-2

LDAP Naming Model, 2-2

LDAP Security Model, 2-6

ldapadd, A-22

adding entries, A-22

adding JPEG images, A-24

LDIF files in, A-22

syntax, A-22

ldapaddmt, A-24

adding entries concurrently, A-24

LDIF files in, A-24

log, A-24

syntax, A-24

ldapbind, A-26

syntax, A-26

ldap-bind operation, 2-7

ldapcompare, A-28

syntax, A-28

ldapcreateConn.sh

syntax, A-59

ldapdelete, A-30

deleting entries, A-30

syntax, A-30

ldapmoddn, A-31

syntax, A-31

ldapmodify, A-33

adding values to multivalued attributes, A-36

change types, A-35

creating group entries, A-36

deleting entries, A-37

LDIF files in, A-33

replacing attribute values, A-36

syntax, A-33

ldapmodifymt, A-38

by using, A-38

LDIF files in, A-38

multithreaded processing, A-40

syntax, A-38

ldapsearch, 7-71, A-40, A-58, A-59

filters, A-43

syntax, A-40

ldapUploadAgentFile.sh

syntax, A-58, A-59

LDIF

files

in ldapadd commands, A-22

in ldapaddmt commands, A-24

in ldapmodify commands, A-33

in ldapmodifymt commands, A-38

formatting notes, A-3

formatting rules, A-3

syntax, A-2

using, A-2

List of Values (LOV), 6-6

log files

debug, viewing, A-10

MD4, for password encryption, 2-10

MD5, for password encryption, 2-10

multiple threads, A-40

in ldapaddmt, A-24

increasing the number of, A-25

multithreaded command-line tools

ldapaddmt, A-24

ldapmodifymt, A-40

multivalued attributes

adding values to, by using ldapmodify, A-36

naming entries, 2-2

net service name, A-5

object classes

adding

concurrently, by using ldapaddmt, A-24

in LDIF files, A-2

objects

removing

by using command-line tools, A-30

removing by using command-line tools, A-33

odisrvreg, A-64

OID Control Utility, A-6

run-server command, A-6

stop-server command, A-6

syntax, A-6

viewing debug log files, A-10

OID Monitor, A-6

sleep time, A-5

starting, A-4, A-5

stopping, A-5

syntax, A-4

oidctl

viewing debug log files, A-10

oidctl. See OID Control Utility

OIDLDAPD, A-9

OIDREPLD, A-11

one-level search, A-41

one-way SSL authentication, 2-8, 7-2

OpenLDAP Community, i-xxix

operating systems supported by Oracle Internet Directory, 1-11

operational attributes

ACI, 2-8

Oracle Directory Manager, 1-11

listing attribute types, A-3

Oracle directory replication server, 1-11

Oracle directory replication server instances

starting, A-10, A-11

stopping, A-10, A-11

Oracle directory server, 1-11

Oracle directory server instances

starting, A-7

stopping, A-7, A-9

Oracle extensions

about, 3-1

application

deinstallation logic, 1-5

runtime logic, 1-5

shutdown logic, 1-5

startup and bootstrap logic, 1-4

group management functionality, 3-12

programming abstractions

for Java language, 3-5

for PL/SQL language, 3-4

user management functionality, 3-5, 3-7

Oracle extensions to support SSL, 7-2

Oracle Internet Directory, components, 1-11

Oracle SSL call interface, 7-2

Oracle SSL extensions, 7-2

Oracle SSL-related libraries, 7-84

Oracle system libraries, 7-84

Oracle wallet, 7-3

Oracle Wallet Manager, 7-3

required for creating wallets, 7-84

Oracle wallets

changing location of

with ldapadd, A-24

with ldapaddmt, A-26

with ldapbind, A-27

with ldapcompare, A-29

with ldapdelete, A-31

with ldapmoddn, A-33

with ldapmodify, A-34

with ldapmodifymt, A-40

with ldapsearch, A-42

Oracle xxtensions

what an LDAP-integrated application looks like, 1-3

overview of LDAP models, 2-2

password-based authentication, 2-7

passwords

encryption, 2-7, 2-10

default, 2-10

MD4, 2-10

MD5, 2-10

SHA, 2-10

UNIX crypt, 2-10

encryption options, 2-10

policies, 2-10

performance

by using multiple threads, A-25

permissions, 2-6, 2-8

PKI authentication, 2-9

PL/SQL API, 8-1

contains subset of C API, 2-13

data-type summary, 8-6

exception summary, 8-5

functions

add_s, 8-40

ber_free, 8-51

bind_s, 8-10

compare_s, 8-13

count_entries, 8-23

count_values, 8-42

count_values_len, 8-43

create_mod_array, 8-35

dbms_ldap.init, 8-8

delete_s, 8-31

err2string, 8-34

explode_dn, 8-46

first_attribute, 8-24

first_entry, 8-20

get_dn, 8-27

get_values, 8-28

get_values_len, 8-29

init, 8-7

modify_s, 8-39

modrdn2_s, 8-32

msgfree, 8-50

next_attribute, 8-25

next_entry, 8-21

open_ssl, 8-48, 8-50, 8-51

rename_s, 8-44

search_s, 8-16

search_st, 8-18

simple_bind_s, 8-9

unbind_s, 8-11

loading into database, 2-13

procedures

free_mod_array, 8-41

populate_mod_array (binary version), 8-37

populate_mod_array (string version), 8-36

subprograms, 8-7

summary, 8-2

using for a search, B-10

using from a database trigger, B-2

port

default, A-9, A-11

port 389, A-9, A-11

port 636, A-9, A-11

privacy, data, 2-6, 2-9

privileges, 2-6, 2-8

procedures, PL/SQL

free_mod_array, 8-41

populate_mod_array (binary version), 8-37

populate_mod_array (string version), 8-36

profile tools, A-45

profiles

deregistering, A-61

provisioning

tool

syntax, A-65

Provisioning Subscription Tool, A-65

public key

infrastructure, 2-9

RC4_40 encryption, 2-9

RDNs. see relative distinguished names (RDNs)

Index

Numerics

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

R

S

T

U

V

W