Directory Configuration |
|
Attribute for Login Name |
Enter the attribute by which you want users to identify themselves when they log in--for example, UID , EmployeeNumber , SSN .
This is the attribute that uniquely identifies the user. Oracle Application Server Single Sign-On locates the user by using this attribute during login. When you make changes to this attribute, be sure that the user entries contain this attribute and are unique. You can enforce the uniqueness by setting up an attribute uniqueness constraint on this attribute under the user search base.
This field is mandatory. |
Attribute for RDN |
The attribute used for creating the RDN component of the user entry. The value you enter for this field should not be the same as the value you entered in the Attribute for Login Name field. |
User Search Base |
Enter the DN of the entry under which the user entries for this realm are located. Make sure you enter the valid DN and users are present under this context. Oracle Application Server Single Sign-On looks for users under this context during user login.
Also, be sure that all the ACLs are set up properly. Any discrepancy among the ACLs will disrupt either the login process or the behavior of Oracle Internet Directory Self-Service Console.
This field is mandatory. |
User Creation Base |
Enter the DN of the entry under which to create users for this realm. This should be the same as that for the user search base.
If you want to distribute the users under different contexts under the user search base, then you can set this value to be different than that of the user search base. In either case, this DN should be either that of the user search base, or of a context under the user search base. For example, if the user search base is cn=users,dc=acme,dc=com , and you want to divide the users based on the locality, then you can set this value to:
L=America, cn=users,dc=acme,dc=com
L=Asia, cn=users,dc=acme,dc=com
L=Europe, cn=users,dc=acme,dc=com
Note: The Oracle Internet Directory Self-Service Console expects these contexts to be present and the privileges under these contexts to be set correctly. |
Group Search Base |
Enter the DN of the entry under which group entries for this realm are located. This field is mandatory. |
Group Creation Base |
Enter the DN of the entry under which to create groups for this realm |
Search Return Limit |
Enter the maximum number to be displayed in a search. This field is mandatory. |
Logo Management |
|
Enable Realm Logo |
Select to display the realm logo on the Identity Management Realm Configuration window. |
Enable Product Logo |
Select to display the product logo on the Identity Management Realm Configuration window.
Note: If both Enable Realm Logo and Enable Product Logo are selected, then the realm logo appears at the top, with the product logo beneath it. |
Update Realm Logo |
Enter the path and file name of the logo for this realm or, alternatively, navigate to it by choosing Browse. |