Index
A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
R
S
T
U
V
W
Numerics
- 389 port, A-9, A-11
- 636 port, A-9, A-11
A
- abandoning an operation, 7-46
- access control, 2-6, 2-8
- and authorization, 2-8
- access control information (ACI), 2-9
- attributes, 2-8
- directives
- format, 2-9
- Access Control List (ACL), 2-8
- access control lists (ACLs), 2-8
- ACI. See access control information (ACI)
- ACLs. See Access Control List (ACL)
- add.log, A-24
- administration tools
- ldapadd, A-22
- ldapaddmt, A-24
- ldapbind, A-26
- ldapcompare, A-28
- ldapdelete, A-30
- ldapmoddn, A-31
- ldapmodify, A-33
- ldapmodifymt, A-38
- ldapsearch, A-40
- agent tools, A-45
- agents
- uploading agent file, A-58
- anonymous authentication, 2-7
- applications, building
- with the C API, 7-70
- attribute options
- searching for by using ldapsearch, A-43
- attribute values, replacing, A-36
- attributes
- adding
- by using ldapadd, A-22
- concurrently, by using ldapaddmt, A-24
- to existing entries, A-22
- attribute options
- searching for by using ldapsearch, A-43
- deleting
- by using ldapmodify, A-36
- in LDIF files, A-2
- types, 2-5
- values, 2-5
- deleting, A-36
- authentication, 2-6, 2-7
- anonymous, 2-7
- certificate-based, 2-7
- Kerberos, A-23, A-25, A-30
- modes, SSL, 7-2
- one-way SSL, 2-8
- options, 2-7
- password-based, 2-7
- PKI, 2-9
- SSL, 2-7, 2-8, 7-2
- none, 7-2
- one-way, 7-2
- two-way, 7-2
- with ldapadd, A-24
- with ldapaddmt, A-26
- with ldapbind, A-27
- with ldapmodify, A-34
- with ldapmodifymt, A-40
- strong, 2-7
- to a directory server
- enabling, 2-15
- enabling, by using DBMS_LDAP, 2-17
- enabling, by using the C API, 2-16
- to the directory, 7-18
- two-way SSL, 2-8
- authorization, 2-6, 2-8
- authorization ID, 2-7
B
- base search, A-41
- bootstrap command, in Directory Integration and Provisioning Assistant, A-49
- bulk tools, 1-11
C
- C API, 7-1
- functions
- abandon, 7-46
- abandon_ext, 7-46
- add, 7-40
- add_ext, 7-40
- add_ext_s, 7-40
- add_s, 7-40
- compare, 7-31
- compare_ext, 7-31
- compare_ext_s, 7-31
- compare_s, 7-31
- count_entries, 7-55
- count_references, 7-55
- count_values, 7-59
- count_values_len, 7-59
- delete, 7-42
- delete_ext, 7-42
- delete_ext_s, 7-42
- delete_s, 7-42
- dn2ufn, 7-61
- err2string, 7-50
- explode_dn, 7-61
- explode_rdn, 7-61
- extended_operation, 7-44
- extended_operation_s, 7-44
- first_attribute, 7-57
- first_entry, 7-55
- first_message, 7-53
- first_reference, 7-55
- get_dn, 7-61
- get_entry_controls, 7-62
- get_option, 7-10
- get_values, 7-59
- get_values_len, 7-59
- init, 7-9
- init_ssl call, 7-3
- modify, 7-34
- modify_ext, 7-34
- modify_ext_s, 7-34
- modify_s, 7-34
- msgfree, 7-47
- msgid, 7-47
- msgtype, 7-47
- next_attribute, 7-57
- next_entry, 7-55
- next_message, 7-53
- next_reference, 7-55
- open, 7-9
- parse_extended_result, 7-50
- parse_reference, 7-64
- parse_result, 7-50
- parse_sasl_bind_result, 7-50
- rename, 7-37
- rename_s, 7-37
- result, 7-47
- sasl_bind, 7-18
- sasl_bind_s, 7-18
- search, 7-26
- search_ext, 7-26
- search_ext_s, 7-26
- search_s, 7-26
- search_st, 7-26
- set_option, 7-10
- simple_bind, 7-18
- simple_bind_s, 7-18
- unbind, 7-24
- unbind_ext, 7-24
- unbind_s, 7-24
- value_free, 7-59
- value_free_len, 7-59
- reference, 7-4
- sample search tool, 7-71
- sample usage, 7-65
- summary, 7-4
- usage with SSL, 7-65
- usage without SSL, 7-66
- Catalog Management Tool
- syntax, A-20
- Catalog Management tool
- syntax, A-20
- catalog.sh
- syntax, A-20
- catldap.sql, 2-13
- certificate authority, 2-7
- certificate-based authentication, 2-7
- certificates, 2-7
- change logging, A-9
- change logs
- flag, A-8
- toggling, A-8
- change types, in ldapmodify input files, A-35
- changetype attribute
- add, A-35
- delete, A-37
- modify, A-35
- modrdn, A-37
- children of an entry, listing, 7-31
- command-line tools
- Directory Integration and Provisioning Assistant, A-46
- ldapadd, A-22
- ldapaddmt, A-24
- ldapbind, A-26
- ldapcompare, A-28
- ldapcreateconn.sh, A-59
- ldapdelete, A-30
- ldapmoddn, A-31
- ldapmodify, A-33
- ldapmodifymt, A-38
- ldapsearch, A-40
- ldapUploadAgentFile.sh, A-58
- schemasync, A-63
- stopodiserver.sh, A-62
- syntax, A-19
- components
- Oracle Internet Directory SDK, 1-2
- configuration set entries
- modifying, A-18
- overriding user-specified, A-10
- controls, working with, 7-16
- creating an integration profile, A-59
D
- DAP Information Model, 2-4
- DAS units, 6-2
- DAS URL Parameter Descriptions, 10-5
- DAS URL Parameters, 6-5
- DAS URL parameters, 10-3
- data
- integrity, 2-6, 2-9
- privacy, 2-6, 2-9
- data-type summary, 8-6
- DBMS_LDAP
- about, i-xxvii
- sample usage
- about, B-1
- for a search, B-10
- from a database trigger, B-2
- Java sample code, B-33
- DBMS_LDAP package, i-xxvii
- searching by using, 2-17
- DBMS_LDAP_UTL
- about, 9-1
- data-types, 9-6, 9-50
- function return codes, 9-4, 9-47
- group-related subprograms
- about, 9-2
- function create_group_handle, 9-24
- function get_group_dn, 9-28
- function get_group_properties, 9-26
- function set_group_handle_properties, 9-25
- miscellaneous subprograms
- about, 9-3
- function check_interface_version, 9-46
- function create_mod_propertyset, 9-43
- function get_property_names, 9-39
- function get_property_values, 9-40
- function get_property_values_len, 9-41
- function normalize_dn_with_case, 9-38
- function populate_mod_propertyset, 9-44
- procedure free_handle, 9-46
- procedure free_mod_propertyset, 9-45
- procedure free_propertyset_collection, 9-42
- subscriber-related subprograms
- about, 9-3
- function create_subscriber_handle, 9-30
- function get_subscriber_dn, 9-33
- function get_subscriber_properties, 9-31
- user-related subprograms
- about, 9-2
- function authenticate_user, 9-8
- function check_group_membership, 9-19
- function create_user_handle, 9-10
- function get_group_membership, 9-21
- function get_user_dn, 9-17
- function get_user_extended_properties, 9-16
- function get_user_properties, 9-12
- function locate_subscriber_for_user, 9-20
- function set_user_handle_properties, 9-11
- function set_user_properties, 9-14
- debug
- log files, viewing, A-10
- default port
- number, A-9, A-11
- Delegated Administration Services, 6-2
- dependencies and limitations, 7-84
- C API, 7-84
- DES40 encryption, 2-9
- directives, 2-9
- Directory Information Tree, 2-3
- directory information tree (DIT), 2-2
- Directory Integration and Provisioning Assistant
- bootstrap command, A-49
- what it does, A-46
- directory integration and provisioning server
- registration tool, A-64
- starting, A-12
- stopping, A-16
- directory replication server
- starting, A-10, A-11
- stopping, A-11
- directory server discovery, 3-13
- directory servers
- restarting, A-17
- starting
- mandatory arguments, A-9
- syntax, A-7
- with default configuration, A-10
- stopping, A-9
- distinguished names, 2-2
- components of, 2-3
- format, 2-3
- in LDIF files, A-2
- DNs. see distinguished names.
- documentation, related, i-xxviii
E
- encryption
- DES40, 2-9
- levels available in Oracle Internet Directory, 2-9
- options for passwords, 2-10
- passwords, 2-10
- default, 2-10
- MD4, 2-10
- MD5, 2-10
- SHA, 2-10
- UNIX crypt, 2-10
- RC4_40, 2-9
- entries
- adding
- by using ldapadd, A-22
- by using ldapaddmt, A-24
- deleting
- by using ldapdelete, A-30
- by using ldapmodify, A-37
- distinguished names of, 2-2
- locating by using distinguished names, 2-3
- modifying
- by using ldapmodify, A-33
- concurrently, by using ldapmodifymt, A-38
- naming, 2-2
- reading, 7-31
- searching
- base level, A-41
- by using ldapsearch, A-40, A-58, A-59
- one-level, A-41
- subtree level, A-41
- errors
- handling and parsing results, 7-50
- exception summary, 8-5
F
- filters, 2-21
- IETF-compliant, A-40
- ldapsearch, A-43
- formats, of distinguished names, 2-3
G
- group entries
- creating
- by using ldapmodify, A-36
H
- header files and libraries, required, 7-71
- history of LDAP, 2-2
I
- index
- StopOdiServer.sh, A-62
- integration profiles
- creating, A-59
- integrity, data, 2-9
- interface calls, SSL, 7-3
J
- Java, 1-2, 2-12
- Java API reference
- class descriptions
- Property class, 3-6
- PropertySet class, 3-6
- PropertySetCollection class, 3-6
- JNDI, 1-2, 2-12
- JPEG images, adding with ldapadd, A-24
K
- Kerberos authentication, A-23, A-25, A-30
L
- LDAP
- functional model, 2-6
- history, 2-2
- information model, 2-4
- messages, obtaining results and peeking inside, 7-47
- naming model, 2-2
- operations, performing, 7-26
- search filters, IETF-compliant, A-40
- security model, 2-6
- server instances
- starting, A-7
- session handle options, 7-10
- in the C API, 2-15
- sessions
- initializing, 2-13, 7-9
- version 2 C API, 7-2
- LDAP APIs, 1-6
- LDAP Data Interchange Format (LDIF), A-2
- syntax, A-2
- LDAP Functional Model, 2-6
- LDAP Models, 2-2
- LDAP Naming Model, 2-2
- LDAP Security Model, 2-6
- ldapadd, A-22
- adding entries, A-22
- adding JPEG images, A-24
- LDIF files in, A-22
- syntax, A-22
- ldapaddmt, A-24
- adding entries concurrently, A-24
- LDIF files in, A-24
- log, A-24
- syntax, A-24
- ldapbind, A-26
- syntax, A-26
- ldap-bind operation, 2-7
- ldapcompare, A-28
- syntax, A-28
- ldapcreateConn.sh
- syntax, A-59
- ldapdelete, A-30
- deleting entries, A-30
- syntax, A-30
- ldapmoddn, A-31
- syntax, A-31
- ldapmodify, A-33
- adding values to multivalued attributes, A-36
- change types, A-35
- creating group entries, A-36
- deleting entries, A-37
- LDIF files in, A-33
- replacing attribute values, A-36
- syntax, A-33
- ldapmodifymt, A-38
- by using, A-38
- LDIF files in, A-38
- multithreaded processing, A-40
- syntax, A-38
- ldapsearch, 7-71, A-40, A-58, A-59
- filters, A-43
- syntax, A-40
- ldapUploadAgentFile.sh
- syntax, A-58, A-59
- LDIF
- files
- in ldapadd commands, A-22
- in ldapaddmt commands, A-24
- in ldapmodify commands, A-33
- in ldapmodifymt commands, A-38
- formatting notes, A-3
- formatting rules, A-3
- syntax, A-2
- using, A-2
- List of Values (LOV), 6-6
- log files
- debug, viewing, A-10
M
- MD4, for password encryption, 2-10
- MD5, for password encryption, 2-10
- multiple threads, A-40
- in ldapaddmt, A-24
- increasing the number of, A-25
- multithreaded command-line tools
- ldapaddmt, A-24
- ldapmodifymt, A-40
- multivalued attributes
- adding values to, by using ldapmodify, A-36
N
- naming entries, 2-2
- net service name, A-5
O
- object classes
- adding
- concurrently, by using ldapaddmt, A-24
- in LDIF files, A-2
- objects
- removing
- by using command-line tools, A-30
- removing by using command-line tools, A-33
- odisrvreg, A-64
- OID Control Utility, A-6
- run-server command, A-6
- stop-server command, A-6
- syntax, A-6
- viewing debug log files, A-10
- OID Monitor, A-6
- sleep time, A-5
- starting, A-4, A-5
- stopping, A-5
- syntax, A-4
- oidctl
- viewing debug log files, A-10
- oidctl. See OID Control Utility
- OIDLDAPD, A-9
- OIDREPLD, A-11
- one-level search, A-41
- one-way SSL authentication, 2-8, 7-2
- OpenLDAP Community, i-xxix
- operating systems supported by Oracle Internet Directory, 1-11
- operational attributes
- ACI, 2-8
- Oracle Directory Manager, 1-11
- listing attribute types, A-3
- Oracle directory replication server, 1-11
- Oracle directory replication server instances
- starting, A-10, A-11
- stopping, A-10, A-11
- Oracle directory server, 1-11
- Oracle directory server instances
- starting, A-7
- stopping, A-7, A-9
- Oracle extensions
- about, 3-1
- application
- deinstallation logic, 1-5
- runtime logic, 1-5
- shutdown logic, 1-5
- startup and bootstrap logic, 1-4
- group management functionality, 3-12
- programming abstractions
- for Java language, 3-5
- for PL/SQL language, 3-4
- user management functionality, 3-5, 3-7
- Oracle extensions to support SSL, 7-2
- Oracle Internet Directory, components, 1-11
- Oracle SSL call interface, 7-2
- Oracle SSL extensions, 7-2
- Oracle SSL-related libraries, 7-84
- Oracle system libraries, 7-84
- Oracle wallet, 7-3
- Oracle Wallet Manager, 7-3
- required for creating wallets, 7-84
- Oracle wallets
- changing location of
- with ldapadd, A-24
- with ldapaddmt, A-26
- with ldapbind, A-27
- with ldapcompare, A-29
- with ldapdelete, A-31
- with ldapmoddn, A-33
- with ldapmodify, A-34
- with ldapmodifymt, A-40
- with ldapsearch, A-42
- Oracle xxtensions
- what an LDAP-integrated application looks like, 1-3
- overview of LDAP models, 2-2
P
- password-based authentication, 2-7
- passwords
- encryption, 2-7, 2-10
- default, 2-10
- MD4, 2-10
- MD5, 2-10
- SHA, 2-10
- UNIX crypt, 2-10
- encryption options, 2-10
- policies, 2-10
- performance
- by using multiple threads, A-25
- permissions, 2-6, 2-8
- PKI authentication, 2-9
- PL/SQL API, 8-1
- contains subset of C API, 2-13
- data-type summary, 8-6
- exception summary, 8-5
- functions
- add_s, 8-40
- ber_free, 8-51
- bind_s, 8-10
- compare_s, 8-13
- count_entries, 8-23
- count_values, 8-42
- count_values_len, 8-43
- create_mod_array, 8-35
- dbms_ldap.init, 8-8
- delete_s, 8-31
- err2string, 8-34
- explode_dn, 8-46
- first_attribute, 8-24
- first_entry, 8-20
- get_dn, 8-27
- get_values, 8-28
- get_values_len, 8-29
- init, 8-7
- modify_s, 8-39
- modrdn2_s, 8-32
- msgfree, 8-50
- next_attribute, 8-25
- next_entry, 8-21
- open_ssl, 8-48, 8-50, 8-51
- rename_s, 8-44
- search_s, 8-16
- search_st, 8-18
- simple_bind_s, 8-9
- unbind_s, 8-11
- loading into database, 2-13
- procedures
- free_mod_array, 8-41
- populate_mod_array (binary version), 8-37
- populate_mod_array (string version), 8-36
- subprograms, 8-7
- summary, 8-2
- using for a search, B-10
- using from a database trigger, B-2
- port
- default, A-9, A-11
- port 389, A-9, A-11
- port 636, A-9, A-11
- privacy, data, 2-6, 2-9
- privileges, 2-6, 2-8
- procedures, PL/SQL
- free_mod_array, 8-41
- populate_mod_array (binary version), 8-37
- populate_mod_array (string version), 8-36
- profile tools, A-45
- profiles
- deregistering, A-61
- provisioning
- tool
- syntax, A-65
- Provisioning Subscription Tool, A-65
- public key
- infrastructure, 2-9
R
- RC4_40 encryption, 2-9
- RDNs. see relative distinguished names (RDNs)
- related documentation, i-xxviii
- relative distinguished names (RDNs), 2-3
- modifying
- by using ldapmodify, A-37
- results, stepping through a list of, 7-53
- RFC 1823, 7-84
- rules, LDIF, A-3
- run-server command, by using OID Control Utility, A-6
S
- sample C API usage, 7-65
- sample search tool, building with C API, 7-71
- SDK components, 1-2
- search
- filters
- IETF-compliant, A-40
- ldapsearch, A-43
- results
- parsing, 7-54
- scope, 2-20
- search-related operations, flow of, 2-18
- security, within Oracle Internet Directory environment, 2-6
- self-service console, 6-3
- Service Discovery APIs, 6-4
- service location record, 3-13
- sessions
- closing, 7-24
- enabling termination by using DBMS_LDAP, 2-26
- initializing
- by using DBMS_LDAP, 2-14
- by using the C API, 2-13
- session-specific user identity, 2-7
- SHA (Secure Hash Algorithm), for password encryption, 2-10
- simple authentication, 2-7
- sleep time, OID Monitor, A-5
- Smith, Mark, i-xxix
- SQL*Plus, 2-13
- SSL
- authentication modes, 7-2
- default port, 2-8
- enabling
- with ldapadd, A-24
- with ldapaddmt, A-26
- with ldapbind, A-27
- with ldapmodify, A-34
- with ldapmodifymt, A-40
- handshake, 7-3
- interface calls, 7-3
- no authentication, 2-8
- one-way authentication, 2-8
- Oracle extensions, 7-2
- provide encryption and decryption, 7-2
- strong authentication, 2-9
- two-way authentication, 2-8
- wallets, 7-3
- SSO, 6-3
- stopodiserver.sh, A-62
- stop-server command, A-6
- strong authentication, 2-7
- subtree level search, A-41
- syntax
- Catalog Management Tool, A-20
- catalog management tool, A-21
- catalog.sh, A-20
- command-line tools, A-19
- Directory Integration and Provisioning Assistant, A-46
- directory integration and provisioning server registration tool, A-64
- ldapadd, A-22
- ldapaddmt, A-24
- ldapbind, A-26
- ldapcompare, A-28
- ldapcreateconn.sh, A-59
- ldapdelete, A-30
- ldapDeleteConn.sh, A-61
- ldapmoddn, A-31
- ldapmodify, A-33
- ldapmodifymt, A-38
- ldapsearch, A-40
- ldapUploadAgentFile.sh, A-58, A-59
- LDIF, A-2
- LDIF and command-line tools, A-1, B-1
- odisrvreg, A-64
- OID Control Utility, A-6
- OID Monitor, A-4
- oidctl, A-6
- oidprovtool, A-65
- Oracle Directory Integration and Provisioning Platform command-line tools, A-45
- Provisioning Subscription Tool, A-65
- provisioning tool, A-65
- schemasync, A-63
T
- TCP/IP socket library, 7-84
- troubleshooting
- directory server instance startup, A-10
- two-way authentication, SSL, 7-2
- types of attributes, 2-5
U
- UNIX crypt, for password encryption, 2-10
V
- values, deleting attribute, A-36
W
- wallets
- SSL, 7-3
- support, 7-3