Index

A B C D E F G H I J K L M N O P Q R S T U V W

Numerics

389 port, A.2.2.1.1, B.3.5

636 port, A.2.2.1.1, B.3.5

A

A control information (ACI)

more than one for the same subject, 14.2.2

abstract object classes, 2.5.2.3, 2.5.2.3, 2.5.2.3

superclasses of, 8.2.2.1

top, 2.5.1

access

exclusionary, 14.2.3

granting

by using command-line tools, 14.4

by using Oracle Directory Manager, 14.3

entry-level, by using command-line tools, 14.4.3

entry-level, by using Oracle Directory Manager, 14.3.6

kinds, 14.1.2.3

level requirements for LDAP operations, 14.1.3

object, 14.1.2.1

operations, 14.1.2.3

rights, setting by using Oracle Directory Manager, 14.3.3.2, 14.3.5.2

selecting, by DN, 14.4.5

subject, 14.1.2.2

unspecified, 14.1.2.3, 14.3.5.2, 14.3.5.2

violation event, 10.2.3

access control

and authorization, 2.7

conceptual discussion, 12.3

default, 17.1.3

defined, 2.7

directive format. See ACI directive format

management constructs, 14.1.1

managing, 14, 14

by using command-line tools, 14.4, 14.4

by using Oracle Directory Manager, 14.3, 14.3

overview, 1.4.3.3

policies

conflicting, 14.1.1.1

inheriting, 14.1.1.1

policy administration, overview, 14.1

prescriptive, 14.1.1.2

schema elements, B.3.1

setting, by using wildcards, 14.4.4

access control information (ACI)

attributes, 12.3

components, 14.1.2, 14.1.2

directives, format

items

format, E

syntax, E

object of directives, 14.1.2.1

subject of directives, 14.1.2.2

access control lists (ACLs), 2.2, 12.3

directives, within entries, 14.1.1.3

evaluation

for groups, 14.2.4

precedence rules, 14.2.1

for groups, 14.2.4

how it works, 14.2

modification, 10.2.3

precedence

rules, 14.2.1

within subtrees, 14.1.1.2

Access Control Management pane, in Oracle Directory Manager, C.2

access control policy points (ACPs), 14.1.1.1, 14.1.1.1, 14.3.3

adding

by using ldapmodify, 14.4.2

by using Oracle Directory Manager, 4.1.3.2, 14.3.3

by using the ACP Creation Wizard of Oracle Directory Manager, 14.3.4

administering, by using Oracle Directory Manager, 4.1.7

configuring display of, in Oracle Directory Manager, 14.3.1.1

creating by using ACP Creation Wizard, 14.3.4

Creation Wizard, 14.3.4

defined

groups, 14.1.1.4.1

multiple, 14.1.1.1, 14.1.1.1

viewing, 14.3.2

by using Oracle Directory Manager, 14.3.2, 14.3.2

viewing, by using Oracle Directory Manager, 14.3.2, 14.3.2

accessDirectiveMatch matching rule, B.5

accounts

enabling and disabling

by using command-line tools, 15.2.2.3

by using Oracle Internet Directory Self-Service Console, 15.2.3.1

unlocking

by using command-line tools, 15.2.2.4

by using Oracle Internet Directory Self-Service Console, 15.2.3.2

ACI. See access control information (ACI)

ACL. See access control lists (ACLs)

ACP groups, 14.1.1.4.1

ACP. See access control policy points (ACPs)

ACPs. See access control policy points (ACPs)

active server instances

modifying configuration set entries in, 5.1.2

viewing, 5.1.2.1, 5.5

added_object_constraint filter, 14.4.1

added-object-constraint, in access control, 14.1.2.2.3

add.log, A.4.3

-ADDNODE option, in Replication Environment Management Tool, A.7.2.1

administration tools, 6.2.1

bulkdelete, A.5.1

bulkload, A.5.2

bulkmodify, A.5.3

Catalog Management Tool (catalog.sh), 4.3.2

command-line, 1.4.2, 4.3

Human Intervention Queue Manipulation Tool, 4.3.4

ldapadd, 6.2.1, A.4.2

ldapaddmt, A.4.3

ldapbind, A.4.4

ldapcompare, A.4.5

ldapdelete, 6.2.1, A.4.6

ldapmoddn, A.4.7

ldapmodify, 6.2.1, A.4.8

ldapmodifymt, A.4.9

ldapsearch, A.4.10

ldifwrite, A.5.4

OID Database Password Utility (oidpasswd), 4.3.7

OID Database Statistics Tool (oidstats.sh), 4.3.6

OID Migration Tool, 4.3.5

OID Reconciliation Tool, 4.3.4

Oracle Directory Manager, 4.1

Replication Environment Management Tool, 4.3.4

Advanced Replication

configuring

by using Replication Management Tool, 25.1.2.4

agents

log file location, 3.6

alias entries

adding, 5.8.2.1

dereferencing, 5.8, 5.8.2

messages, 5.8.3

modifying, 5.8.2.3

searching directory with, 5.8.2.2

alternate server list

from the Oracle directory server, 26.3.2

from user input, 26.3.1

AlternateServers attribute, in failover, 26.3.2, 26.3.2.1

ANALYZE function of DBMS_STATS package, 21.2

anonymous authentication, 12.4.1, 12.4.1, C.1

anonymous login, C.1

Application Server Control

starting directory server instance, 10.3.6.2

stopping directory server instance, 10.3.6.3

viewing user logon session information, 10.3.6.5

application-specific repositories

migrating data from, 23.2

Apply button, in Oracle Directory Manager, 4.1.3.1

architecture

Oracle Internet Directory, 1.4.1, 2, 2.1

Oracle Internet Directory Server Manageability framework, 10.3.2

ASR Agreement tab page, in Oracle Directory Manager, C.8

-ASRCLEANUP option, Replication Environment Management Tool, A.7.2.5

-ASRRECTIFY option, in Replication Environment Management Tool, A.7.2.6

-ASRSETUP option, in Replication Environment Management Tool, A.7.2.2

-ASRVERIFY option, in Replication Environment Management Tool, A.7.2.7

attribute options, 2.4.6

adding

by using ldapmodify, 6.2.2.1

by using Oracle Directory Manager, 6.1.5.1

conceptual discussion, 2.4.6

deleting by using Oracle Directory Manager, 6.1.5.3, 6.1.5.3, 6.2.2.2

language codes, 2.4.6

managing

by using command line tools, 6.2.2

by using Oracle Directory Manager, 6.1.5

modifying by using Oracle Directory Manager, 6.1.5.2

searching for by using ldapsearch, 6.2.2.3, A.4.10.1.6

attribute uniqueness

about, 7.1

constraint entries, 7.1

entries

location of, 7.3.1

known limitations, 7.4

managing, 7.3

managing by suing command-line tools, 7.3.3

managing, by using Oracle Directory Manager, 7.3.2

rules for creating, 7.2

schema elements, B.3.4

attribute values, replacing, A.4.8

attributes

adding, 8.3.1.1

by using ldapadd, A.4.2

by using ldapmodify, 8.3.3.1, 8.3.3.2

by using Oracle Directory Manager, 8.3.2.3, 8.3.2.3.2

concurrently, by using ldapaddmt, A.4.3

guidelines for, 8.3.1.1

to existing entries, A.4.2

AlternateServers, for failover, 26.3.2, 26.3.2.1

as DNs, 6.1.2

as metadata in schema, 8.1

attribute options, 6.2.2.3

adding by using ldapmodify, 6.2.2.1

adding by using Oracle Directory Manager, 6.1.5.1

conceptual discussion, 2.4.6

deleting by using Oracle Directory Manager, 6.1.5.3, 6.2.2.2

managing by using command line tools, 6.2.2

managing by using Oracle Directory Manager, 6.1.5

modifying by using Oracle Directory Manager, 6.1.5.2

searching for by using ldapsearch, A.4.10.1.6

base schema

deleting, 8.3.1.3

modifying, 8.3.1.2

commonName, 2.4.3

creating by using Oracle Directory Manager, 4.1.3.2

deleting, 8.3.1.3, 8.3.1.3

by using ldapmodify, A.4.8

guidelines for, 8.3.1.3

determined by object classes, 8.2.1

ditcontentrule, 8.4.3.1

dropping indexes, 8.3.2.6.3

extending number of

by using auxiliary object classes, 8.4.2

by using content rules, 8.4.3

for existing entries, 8.4.2

prior to creating entries, 8.4.1

for a specific entry

viewing by using Oracle Directory Manager, 6.1.2

for which data exists

indexing, 8.3.3.3.3

for which no directory data exists

indexing, 8.3.3.3.1

in base schema, 8.3.1

in LDIF files, A.1

in top, 2.5.2.3

indexed

viewing, 8.3.2.6.1, 8.3.2.6.1

indexes, created by bulkload, 6.3.1.5

indexing, 8.3.3.3.3, 8.3.3.3.3

by using Catalog Management tool

by using command-line tools, 8.3.3.3, 8.3.3.3, 8.3.3.3

by using Oracle Directory Manager, 8.3.2.6, 8.3.2.6

when you create them, 8.3.2.6

information, kinds of, 2.4.1

inheritance of, 8.2.1.2

jpegPhotos, 2.4.3, 6.2.1.1

kinds of information in, 2.4.1

labeledURI, 9.1.2.1, 9.2.3.1, 9.2.5.1

making available for searches, 8.3.2.6

managing, 8.3.1

by using command-line tools, 8.3.3, 8.3.3, 8.3.3

by using Oracle Directory Manager, 8.3, 8.3, 8.3, 8.3.2, 8.3.2, 8.3.2

overview, 8.3.1

managing by using command-line tools, 8.3.3

mandatory, 2.5, 6.1.4, 8.2.1.2

in a user entry, 23.2.3.1.2

matching rules, 2.4.5, 2.4.5, 2.4.5

modifying

by using ldapmodify, 6.2.1

by using ldapmodifymt, 6.2.1

by using Oracle Directory Manager, 6.1.5.2, 8.3.2.4

guidelines for, 8.3.1.2, 8.3.1.2

rules for, 8.3.1.2

using ldapmodify, 8.3.3.1, 8.3.3.2

multivalued, 2.4.2, 14.1.1.3

converting to single-valued, 8.3.1.2

null values in, 8.2.1.2

objectclass, 10.2.1

objects associated with an ACI, 14.1.2.1

operational, 5.2

optional, 2.5, 8.2.1.2

options, 2.4.6

language codes., 2.4.6

orclauditlevel, 10.2.4

orclauditmessage, 10.2.1

orclauditoc, 10.2.1

orcleventtime, 10.2.1

orcleventtype, 10.2.1

orclopresult, 10.2.1

orclsequence, 10.2.1, 10.2.2

orclskewedattribute, 21.8.2

orcluserdn, 10.2.1

organization, 2.4.3

organizationalUnitName, 2.4.3

redefining mandatory, 8.2.2.1

ref, 6.4

removing from object classes, 8.2.2.2

rules

for adding, 8.3.1.1

for deleting, 8.3.1.3

for modifying, 8.3.1.2

searching for, by using Oracle Directory Manager, 8.3.2.2, 8.3.2.2

single-valued, 2.4.2

converting to multivalued, 8.3.1.2

size of values, B.4.4

skewed, optimizing searches for, 21.8.2

sn, 2.4.3

specifying as mandatory or optional, 8.2.1.2

surname, 2.4.3

syntax, 2.4.4, 2.4.4

modifying, 8.3.1.2

syntax type

selecting, 8.6.1

syntaxes

cannot modify, 8.3.1.2

selecting, 8.6.1

system operational, 5.2

types, 2.4

usercertificate, Preface, I

values, 2.4

deleting, A.4.8

size of, B.4.4

viewing, 6.1.2, 6.1.2

Attributes tab page, in Oracle Directory Manager, C.9.2

audit level, 10.2.3

modifying, 10.2.4.2

setting, 10.2.4

by using ldapmodify, 10.2.4.2

by using Oracle Directory Manager, 10.2.4.1

audit log, 10.2, 10.2

container object, 10.2.5.2

default configuration, 10.2

entries

in the DIT, position of, 10.2.2

position in DIT

searching, 10.2.1

searching for, 10.2.5

searching for by using ldapsearch, 10.2.5.2

searching for by using Oracle Directory Manager, 10.2.5.1

structure, 10.2.1

viewing, 10.2, 10.2

events

access violation, 10.2.3

ACL modification, 10.2.3

add, 10.2.3

adding, 10.2.3

bind, 10.2.3

deleting, 10.2.3

DSE modification, 10.2.3

modify, 10.2.3

modifyDN, 10.2.3

modifying, 10.2.3

replication login, 10.2.3

schema element, add/replace, 10.2.3

schema element, delete, 10.2.3

selected, 10.2.4

super user login, 10.2.3

user password modification, 10.2.3

garbage collector, 22.1.1.2.1

purging, 10.2.6

queries, 10.2

sample, 10.2.2

schema elements, B.3.2, B.3.2

structure of entries, 10.2.1

using, 10.2

auditable events, 10.2.3, 10.2.3, 10.2.3

auditing selected events, 10.2.4

authenticated access, by using SSL, 1.4.3.3

authentication, 12.4

anonymous, 12.4.1, 12.4.1, C.1

certificate, 12.4.1

conceptual discussion, 12.4

defined, 2.7

direct

options, 12.4.1

external, 12.4.3, 32.1

SASL, 12.4.1

in a typical directory operation, 2.2

indirect, 12.4.2

through a RADIUS server, 12.4.2

Kerberos, A.4.2, A.4.3, A.4.6

native, 32.1

Oracle directory replication server, 24.7.1

parameters, B.3.5

password-based, 12.4.1, C.1

PKI, 12.2

SASL, 12.4.1

SASL mechanism

external authentication, 12.4.1

MD5 Digest, 12.4.1

simple, 1.4.3.3, 12.4.1, C.1

Simple Authentication and Security Layer (SASL), 12.4.1

specifying

no SSL, B.3.5

SSL

defined, 12.4.1

for Oracle Directory Manager, C.1

no, C.1

one-way, B.3.5

server only, C.1

with ldapadd, A.4.2

with ldapaddmt, A.4.3

with ldapbind, A.4.4

with ldapmodify, A.4.8

with ldapmodifymt, A.4.9

three levels, 1.4.3.3

through a middle tier, 12.4.2

two-way SSL, B.3.5

Authentication Choice list, in Oracle Directory Manager, C.2

Authentication Services Group, 17.4.2

authorization, 2.7, 12.3

automated resolution of conflicts, 24.9.3.3

auxiliary object classes, 2.5.2.2, 2.5.2.2, 8.2.2.2

extending number of attributes by using, 8.4.2

availability, high, 26.5

average latency, 21.1

B

backup and recovery strategies, failover, 18.3.4

backup and restore, 11

-BACKUPMETADATA option, in Replication Environment Management Tool, A.7.2.19

base schema

attributes, 8.3.1

deleting, 8.3.1.3

modifying, 8.3.1.2, 8.3.1.2

object classes

modifying, 8.2.2.2

base search, 6.1.1, A.4.10

batching line-mode commands, 8.2.4

Begins With filter, in Oracle Directory Manager, C.9.1

bind event, 10.2.3

bind mode, 14.1.2.2.2

binding, 2.2

bitStringMatch matching rule, B.5

bootstrap command, in Directory Integration and Provisioning Assistant, A.8.5

BSTAT/ESTAT scripts, 21.4.1

buffer caches, size, 21.4.1

bulk loading failure, 6.3.1.6

bulk tools

syntax, A.5, A.5

bulkdelete, 4.3.3, 6.3.4, A.5.1, A.5.1

and Globalization Support, F.7.3

syntax, A.5.1, A.5.1

bulkload, 4.3.3, 6.3.1.4, 6.3.1.5, A.5.2

and Globalization Support, F.7.1

check mode, performing on LDIF files, 23.1.2.7

creating indexes, 6.3.1.5

.dat files, 6.3.1.4

generating input files, 6.3.1.4

-load option, 6.3.1.5

log file location, 3.6

syntax, A.5.2, A.5.2

bulkmodify, 4.3.3

and Globalization Support, F.7.4

LDIF file-based modification, A.5.3

syntax, A.5.3, A.5.3

By Whom tab page, in Oracle Directory Manager, C.2

C

C API, 2.2

cache, entry, 21.7

cache, metadata, 2.1.3

caching

client-side referral, 6.4.3.1

Cancel button, in Oracle Directory Manager, 4.1.3.1

capacity planning, 18.5, 18.5.1, 18.5.1, 20

I/O subsystem, 20.3.1

network requirements, 20.5

overview, 20.1

caseExactIA5Match matching rule, B.5

caseExactMatch matching rule, B.5, B.5

caseIgnoreIA5Match matching rule, B.5

caseIgnoreListMatch matching rule, B.5

caseIgnoreMatch matching rule, B.5, B.5

caseIgnoreOrderingMatch matching rule, B.5

catalog entry, 2.1.3

Catalog Management Tool

syntax, A.4.1

Catalog Management tool

syntax, A.4.1

Catalog Management Tool (catalog.sh), 4.3.2, 8.3.3.3.3

log file location, 3.6

cataloged attributes

orcleventtype, 10.2.1

orcluserdn, 10.2.1

catalog.sh

syntax, A.4.1

catalog.sh. See Catalog Management tool.

certificate authentication, 12.4.1

certificate upgrade tool, A.6

change log

purging, in multimaster replication, 22.1.4

change log garbage collection

troubleshooting, K.8

Change Log window, in Oracle Directory Manager, C.8

change logging, A.2.2.1.1

change logs, 2.9.1, 24.3.3

and directory replication, 24.8

change number-based purging, 22.1.4

flag, A.2.2.1.1

toggling, A.2.2.1.1

garbage collector, 22.1.1.2.1

in replication, 1.4.3.2, 24.8, 24.9.2.2

purging, 22.1.4, 22.1.4

methods, 22.1.4

time-based purging, 22.1.4

change number-based purging, 22.1.4

change retry count, setting, C.8

change types, in ldapmodify input files, A.4.8

changeLog attribute, B.3.16

changeLogEntry attribute, B.3.16

changeNumber attribute, B.3.16

changes

moving from the human intervention queue into the purge queue, A.7.1.1.2

moving from the human intervention queue into the retry queue, A.7.1.1.1

changeStatus attribute, B.3.16

changeStatusEntry attribute, B.3.16

changetype attribute, B.3.16

add, A.4.8

delete, A.4.8

modify, A.4.8

modrdn, A.4.8

Chapter 29, "The Directory in an Oracle Real Application Clusters Environment", Preface

Chapter 6, "Directory Entries Administration", Preface

-CHGPWD option, in Replication Environment Management Tool, A.7.2.3

cipher suites

SSL, 13.1

SSL, supported, 13.1

SSL_RSA_WITH_3DES_EDE_CBC_SHA, 13.1

SSL_RSA_WITH_NULL_MD5, 13.1

SSL_RSA_WITH_NULL_SHA, 13.1

SSL_RSA_WITH_RC4_128_SHA, 13.1

clients, failover options on, 26.3

client-side referral caching, how it works, 6.4.3.1

cluster manager, 29.1

clusters

definition, 29.1

cn attribute, 2.4.3

cn=replication namecontext, 24.6.4

command line tools

described, 4.3

command-line tools, 1.4.2

adding configuration set entries, 2.1.4, 6.2.1

Catalog Management Tool, 8.3.2.6

comparing attribute values, 6.2.1

Directory Integration and Provisioning Assistant, A.8

for managing entries, 6.2.1

indexing, 8.3.2.6, 8.3.3.3.3

ldapadd, 6.2.1, A.4.2

ldapaddmt, 6.2.1

ldapbind, A.4.4

ldapcompare, A.4.5

ldapdelete, 6.2.1, A.4.6

ldapmoddn, A.4.7

ldapmodify, 6.2.1, A.4.8

ldapmodifymt, A.4.9

ldapsearch, A.4.10

managing

attributes, 8.3.3

entries, 6.2

modifying configuration set entries, 6.2.1

overview, 4.3

Replication Environment Management Tool, A.7.2

setting Globalization Support, F.5

syntax, A.4, A.4

common entry, defined, 2.1.3

Common Group Attributes Group, 17.4.7, 17.4.8, 17.4.9

Common User Attributes Group, 17.4.6

commonName attribute, 2.4.3

comparing

attribute values, 6.2.1

entries, 6.2.1

two objects, 4.1.3.2

component deployment and administration

delegation, 17.3

components

of a directory server, 2.1.1

of Oracle Internet Directory, 1.4.2

concurrent database connections, 21.6.2, B.3.5

configsets, 2.1.4

configuration parameters

modifying, 2.1.4

Oracle directory replication server

location, 25.3.1

configuration set entries, 2.1.4, 2.1.4

adding, 2.1.4, 2.1.4, 5.1, 5.1.3

by using command line tools, 6.2.1

by using command-line tools, 2.1.4

by using Oracle Directory Manager, 5.1.2

changing, 5.1.3.2

database connections, B.3.5

debug level, B.3.5

deleting, 5.1

by using ldapmodify, 5.1.3.2

by using Oracle Directory Manager, 5.1.2, 5.1.2.4

directory server processes, B.3.5

for replication server, 25.3.1

LDIF files, 5.1.3

managing, 4.4, 4.4, 5.1, 5.1

by using command-line tools, 5.1.3, 5.1.3

by using Oracle Directory Manager, 5.1.2, 5.1.2

preliminary considerations, 5.1.1

modifying, 2.1.4, 5.1, 5.1.1, A.2.2.5, A.2.2.5

by using ldapmodify, 5.1.3.2, 5.1.3.2

by using Oracle Directory Manager, 5.1.2, 5.1.2, 5.1.2, 5.1.2.3, 5.1.2.3

in an active server instance, 5.1.2

multiple, 13.4.1

orcldebuglevel, B.3.5

orclmaxcc, B.3.5

orclserverprocs, B.3.5

orclssl authentication, B.3.5

orclsslenable, B.3.5

orclsslport, B.3.5

orclsslwalleturl, B.3.5

overriding user-specified, K.5

schema elements, B.3.5

SSL parameters in, 13.4.1

using different, 5.1.1

viewing, 5.1.2.1

configuration set location, C.10.2

Configuration Sets General tab page, in Oracle Directory Manager, C.10.1

conflict resolution, in replication, 24.9.3

conflicting access control policies, 14.1.1.1

precedence, rules for resolving, 14.1.1.1

conflicts, replication

automated resolution of, 24.9.3.3, 24.9.3.3

manual resolution of, 25.1.5

resolution, 14.2.1, 24.9.3, 24.9.3

resolving manually, 25.1.5

typical causes of, 24.9.3.2, 24.9.3.2

CONNECT BY assertions, in dynamic groups, 9.1.2.1

Connect/Disconnect button in Oracle Directory Manager, 4.1.3.3

connecting

to a directory server, 4.1.2, 4.4

in a typical directory operation, 2.2

to additional directory servers, 4.1.4

to multiple directory servers, 4.1.4, 4.1.4

connection

pooling, 1.4.3.1

redirection

hardware-based, 26.4.1

network-level, 26.4

software-based, 26.4.2

connections, LDAP, specifying maximum idle time for, 5.6

connect-time failover, 29.1

constraints, object classes, 2.5.2.2

consumers

defined, 2.9.1, 24.1

containment

of groups, planning, 19.1.2

of users, planning, 19.1.2

content access items, 14.3.7.1.2

of an existing ACP, 14.3.5.3

Content Rule dialog box, in Oracle Directory Manager, C.9.4

content rules

defined, 8.4.3

defined as values of ditcontentrule attribute, 8.4.3.1

extending number of attributes by using, 8.4.3

managing

by using command-line tools, 8.4.3.4.2

by using Oracle Directory Manager, 8.4.3.4

rules for creating and modifying, 8.4.3.1

schema enforcement when using, 8.4.3.2

control, access, 1.4.3.3, 14

controls

definition, 1.2.2

supported in Oracle Internet Directory, B.7

converting

auxiliary object classes, 8.2.2.2

directory data to LDIF, 6.3.2

structural object classes, 8.2.2.2

CPUs

configuration, 20.6.1

in capacity planning, 20.1

power required for various deployment scenarios, 18.5.2

processing power, 20.6.1

requirements, 20.6, 20.6.2

detailed calculations, 20.6.3

in capacity planning, 20.6

tuning, 21.3, 21.3

tuning for Oracle foreground processes, 21.3.2

usage, 18.5.3

usage tuning, 21.3

when to tune, 21.3

Create button, in Oracle Directory Manager, 4.1.3.3

Create Entry menu item, in Oracle Directory Manager, 4.1.3.2

Create Like

adding entries using templates, 6.1.3.2

button, in Oracle Directory Manager, 4.1.3.3, 6.1.3.2

operation, by using Oracle Directory Manager, 4.1.3.2

createTimestamp attribute, 2.4.1, 23.1.2.5

optional in top, 2.5.2.3

creatorsName attribute, 2.4.1, 23.1.2.5

optional attribute in top, 2.5.2.3

critical events

in Oracle Internet Directory Server Manageability framework, 10.3.5

levels, 10.3.5

D

daemons, 3.1

.dat files, generated by bulkload, 6.3.1.4

data integrity, 2.7, 2.8, 12.1

data migration process, 23.1.1, 23.1.1

data privacy, 2.7, 12.2, 12.2, 12.2

by using SSL, 1.4.3.3

data, updating by using Oracle Directory Manager, 4.1.3.3

database

block buffers parameter, 21.6

block size parameter, 21.6

cache size, 18.5.2

connections, 2.1.2

concurrent, 21.6.2, B.3.5

pooling, 1.4.3.1

dedicated for directory, 2.1.1

password, changing, 5.7

queries, optimization of, 21.8.2

server, 1.4.1

server error, K.2.1

tuning, 21.6

DB_BLOCK_BUFFERS, 21.4.1

DBMS_STATS package, 21.2

debug

log files, viewing, K.5

debug dimension, 10.1.4

debug logging

levels, 10.1.3, 10.1.3.2, B.3.5, B.3.5

about, 10.1.1

setting, 10.1.3

setting by using OID Control Utility, 10.1.3.2

setting by using Oracle Directory Manager, 10.1.3.1

levels, setting

by using OID Control Utility, 10.1.3.2, 10.1.3.2

by using Oracle Directory Manager, 10.1.3.1

log files, viewing, 10.1.3.2

schema elements, B.3.6

debugging the external authentication plug-in, 32.2.2

debugging, limiting to specific operations, 10.1.4

default

identity management realm, 2.14.3.1, 19.5

default configuration

access controls, 17.1.3

default knowledge references (referrals)

configuring, 6.4.2

default knowledge references (referrals), configuring, 6.4.2

default port, 4.1.2

number, A.2.2.1.1

Delegated Administration Services

defined, 2.11

overview, 2.15

delegation

component deployment and administration, 17.3

how it works, 17.1.1

in an Oracle Application Server environment, 17.1.2

of privileges for user and group management, 17.1.4

Delete button, in Oracle Directory Manager, 4.1.3.3

-DELNODE option, in Replication Environment Management Tool, A.7.2.4

deployment

considerations, 18

CPU power, 18.5.2

failover, 18.3.4

replication, 18.3.3

tuning, 18.5.3

examples, 26.7

partitioning, 18.3.2

deployment considerations

metadirectory, 18.4

dereferencing alias entries, 5.8.2

DES40 encryption, 12.2

descriptions of object classes, C.9.1, C.9.1

Digest

MD5, 12.4.1

directories

access control, 1.4.3.3, 14

application, migrating data from, 23.2

as read-focused, 1.1.1

backup and restore, 11

contrasted to relational databases, 1.1.1

database listener, 25.1.2.4.1

defined, 1.1

distributed, 2.9

existing, default directory structure, 23.3

expanding role of, 1.1.1, 18.1

location-independent, 1.1.1

multimaster replication groups (DRGs)

installing, 25.1.2

online

expanding role of, 1.1.1

partitioned, 2.9.2

password, changing, 5.4.1

planning structure of, 19.1.1

read-focused, 1.1.1

replication groups (DRGs), 24.9, 25.1.2

and replication agreements, 24.9

configuring, 25.1.2

schema

managing, 8

overview, 8.1

small

backing up and restoring, 11.1

special purpose, 1.1.2

E

-E argument in Globalization Support, F.5.1

Edit

button, in Oracle Directory Manager, 4.1.3.3

menu item, in Oracle Directory Manager, 4.1.3.2

encryption

DES40, 12.2

levels available in Oracle Internet Directory, 12.2

password, 12.5

passwords

UNIX crypt, 16.2.2, 16.3.1

RC4_40, 12.2

Encryption Choice list, in Oracle Directory Manager, C.2

Ends With filter, in Oracle Directory Manager, C.9.1

entity component, in access control, 14.1.2.2.1

entries

adding

by copying an existing entry, 6.1.3.2

by using ldapadd, 6.2.1, 6.2.1, A.4.2, A.4.2

by using ldapaddmt, 6.2.1, A.4.3, A.4.3

by using Oracle Directory Manager, 6.1.3, 6.1.3, 6.1.3.1

concurrently, 6.2.1

mandatory attributes, 6.1.3.1

optional attributes, 6.1.3.1

requires write access to parents, 6.1.3.1

alias, dereferencing, 5.8

attributes, viewing, 6.1.2

audit log, 10.2

searching, 10.2.1

command-line tools for managing, 6.2.1

comparing, by using ldapcompare, 6.2.1

conceptual discussion, 2.3

configuration set, 2.1.4

creating by using Oracle Directory Manager, 4.1.3.2

deleting

by using ldapdelete, 6.2.1, A.4.6, A.4.6, A.4.6, A.4.6

by using ldapmodify, A.4.8

large numbers, 6.3.4

displaying, 6.1.1

distinguished names of, 2.3.1

garbage collector, 22.1.3

group, 2.4.2

inheriting attributes, 8.2.1.2

loading, 8.2.1.3

locating by using distinguished names

managing, 6

by using bulk tools, 6.3, 6.3

by using command line tools, 6.2, 6.2, 6.2

by using Oracle Directory Manager, 4.1.7, 6.1, 6.1

managing by using command-line tools, 6.2

many, modifying, 6.3.3

modifying

by using ldapmodify, A.4.8

by using Oracle Directory Manager, 6.1.4, 6.1.4, 6.1.4

concurrently, by using ldapmodifymt, A.4.9, A.4.9

large numbers, A.5.3

naming, 2.3.1, 2.3.1

objects associated with an ACI, 14.1.2.1

parent, 8.2.1.3

replication naming context container, 24.6.4, 24.6.5

restricting the kinds users can add, 14.3.3.2, 14.3.4.2, 14.3.5.2, 14.3.7.1.1, 14.4.1

root of search, 6.1.1

searching

base level, 6.1.1, 6.1.1, A.4.10, A.4.10

by using ldapsearch, A.4.10, A.4.10

by using Oracle Directory Manager, 6.1.1, 6.1.1

one-level, 6.1.1, 6.1.1, A.4.10, A.4.10

specifying search depth, 6.1.1

subtree level, 6.1.1, 6.1.1, A.4.10, A.4.10

selecting by DN, 14.4.5

selecting superclass, 6.1.3.1

specific, granting access to, C.2

static group

modifying, by using ldapmodify, 9.2.2.2, 9.2.5.3

superclasses, selecting, 6.1.3.1

user

adding, by using ldapadd, 6.2.1.1

adding, by using Oracle Directory Manager, 6.1.3.3

modifying, 6.2.1.2

modifying, by using ldapmodify, 6.2.1.2

modifying, by using Oracle Directory Manager, 6.1.4.1

with attribute options

adding by using ldapmodify, 6.2.2.1

adding by using Oracle Directory Manager, 6.1.5.1

deleting by using Oracle Directory Manager, 6.1.5.3, 6.2.2.2

managing by using command line tools, 6.2.2, 6.2.2

managing by using Oracle Directory Manager, 6.1.5, 6.1.5

modifying by using Oracle Directory Manager, 6.1.5.2

searching for by using ldapsearch, 6.2.2.3

entry

caching, 21.7

enabling, B.3.18, C.10.2

catalog, defined, 2.1.3

common, defined, 2.1.3

password policy, defined, 2.1.3

password verifier, defined, 2.1.3

plug-in, defined, 2.1.3

entry-level access, granting by using Oracle Directory Manager, 14.3.6

environment variables, NLS_LANG, F.2

error messages, K.2.3

additional, K.2.3

administration, K.2, K.2

database server, K.2.1

directory server, due to schema modifications, K.2.1

installation, K.1, K.1

ORA-1562, K.2.1

password policies, K.3.1

returned from Oracle directory server, K.2.2

standard, K.2.2

events, auditable, 10.2.3

Exact Match filter, in Oracle Directory Manager, C.9.1, C.10.5

exclusionary access to objects, granting, 14.2.3, 14.2.3

existing ACPs and their ACI directives, modifying, 14.3.5

Exit menu item, in Oracle Directory Manager, 4.1.3.2

explicit hierarchies, 9.1.3

extensibility, in LDAP Version 3, 1.2.2

extensibleObject object class, 6.4

external authentication, 12.4.3

contrasted with native authentication, 32.1

defined, 32.1

plug-in, 32, 32.1

debugging, 32.2.2

installing, 32.2.1, 32.2.3

installing, configuring, and enabling, 32.2.1

SASL authentication mechanism, 12.4.1

external repository, storing security credentials in, 32

F

failover, 1.4.3.2, 26, 26.1

AlternateServers attribute, 26.3.2, 26.3.2.1

capabilities in Oracle Internet Directory, 26.5

connect-time, 29.1

considerations in deployment, 18.3.4

in Real Application Clusters environment, 29

network-level, 26.4

options in private network infrastructure, 26.6, 26.6

options in public network infrastructure, 26.4, 26.4

options on clients, 26.3, 26.3

failure recognition and recovery. See failover.

failure to apply changes, 24.9.3

failure tolerance, and replication, 18.3.3

fan-out replication, 2.9.1, 24.1, 24.10

groups, 2.9.1, 24.1, 24.3.4

in conjunction with multimaster replication groups, 24.3.6

LDAP-based, 2.9.1

process, 24.10

fault tolerance mechanisms, 26.2

features, new, Preface

in Oracle Internet Directory, Release 3.0.1, Preface

release 10g (10.1.2), Preface

release 10g (9.0.4), Preface

release 2.1.1, Preface

release 3.0.1, Preface

release 9.0.2, Preface

File menu, in Oracle Directory Manager, 4.1.3.2

filters

Begins With, C.9.1

Ends With, C.9.1

Exact Match, C.9.1, C.10.5

Greater or Equal, C.9.1, C.10.5

IETF-compliant, A.4.10

in attribute searches, 8.3.2.2

in searches, 2.2, 8.2.3.1

in Oracle Directory Manager, 8.2.3.1

ldapsearch, A.4.10.1

Less or Equal, C.9.1, C.10.5

not null, C.9.1

Present, Oracle Directory Manager, C.10.5

Find Attributes button, in Oracle Directory Manager, 8.3.2.2

Find Objects button, in Oracle Directory Manager, 4.1.3.3, 8.2.3.1

formats, of distinguished names

full replication, 2.9.1, 24.1

function calls, tracing, 10.1.3.2

G

garbage collection

framework

about, 22.1

components of, 22.1.1

how it works, 22.1.2

in replication, 22.1.4

plug-in, 22.1.1.1

schema elements, B.3.8

Garbage Collector window, in Oracle Directory Manager, C.4

garbage collectors

audit log, 22.1.1.2.1

change log, 22.1.1.2.1

definition, 22.1.1.2

entries for, 22.1.3

general statistics, 22.1.1.2.1

health statistics, 22.1.1.2.1

managing, 22.2

modifying

by using command-line tools, 22.2.2

by using Oracle Directory Manager, 22.2.1

predefined, 22.1.1.2.1

security and refresh events, 22.1.1.2.1

system resource events, 22.1.1.2.1

tombstone, 22.1.1.2.1

general statistics garbage collector, 22.1.1.2.1

generalizedTimeMatch matching rule, B.5

generalizedTimeOrderingMatch matching rule, B.5

Globalization Support, 2.8

bulkdelete, F.7.3

bulkload, F.7.1

bulkmodify, F.7.4

command-line tools, F.5

Java clients, 2.8

ldapadd, F.5.2

ldapaddmt, F.5.2

ldapbind, F.5.2

ldapcompare, F.5.2

ldapdelete, F.5.2

ldapmoddn, F.5.2

ldapmodify, F.5.2

ldapmodifymt, F.5.2

ldapsearch, F.5.2

ldifwrite, F.7.2

managing, F

settings for Oracle Internet Directory, F.2

using with Bulk Tools, F.7

with bulkdelete, F.7.3

with bulkload, F.7.1

with bulkmodify, F.7.4

with command-line tools, F.5

with LDIF Files, F.4

with ldifwrite, F.7.2

Greater or Equal filter, in Oracle Directory Manager, C.9.1, C.10.5

group entries, 2.4.2

adding, 6.1.4, 9.2.1

creating

by using ldapmodify, A.4.8

by using Oracle Directory Manager, 9.2.1.1, 9.2.1.1, 9.2.4.1, 9.2.4.1

groupOfNames object class, 9.2.1.1, 9.2.1.1, 9.2.4.1, 9.2.4.1

groupOfUniqueNames object class, 9.2.1.1, 9.2.4.1

groups

ACL evaluation for, 14.2.4

ACP, 14.1.1.4.1, 14.1.1.4.1

dynamic, 9.1.2

managing by using command-line tools, 9.2.5

managing by using Oracle Directory Manager, 9.2.4

schema elements for creating, 9.1.2.1

dynamic and static, administration of, 9

granting access rights to, 14.1.1.4.4

hierarchical, 9.1.3

membership

how directory server computes, 14.1.1.4.5

names and containment, planning, 19.1.2

privilege, 14.1.1.4, 14.1.1.4.2, 14.1.1.4.2

defined, 2.1.3

static, 9.1.1

managing by using command-line tools, 9.2.2

managing by using Oracle Directory Manager, 9.2.1

schema elements for creating, 9.1.1.1

when to use static or dynamic, 9.1.5

guest users

definition, 5.4.1

managing, 5.4.1

by using ldapmodify, 5.4.3

by using Oracle Directory Manager, 5.4.2

user name and password, 5.4.1

guidelines

for adding attributes, 8.3.1.1

for adding object classes, 8.2.2.1

for deleting attributes, 8.3.1.3

for deleting object classes, 8.2.2.3

for modifying attributes, 8.3.1.2

for modifying object classes, 8.2.2.2

H

hardware-based connection redirection, 26.4.1

hardware-based load balancing (connection redirection), 26.4.1

hashing

passwords to the directory, 16.2

protection

MD4, 16.2.2

hashing algorithm

default, 16.2

userPassword, 16.2

health statistics garbage collector, 22.1.1.2.1

Help

button, in Oracle Directory Manager, 4.1.3.3

menu item, in Oracle Directory Manager, 4.1.3.2

hierarchical groups, 9.1.3

hierarchies

explicit, 9.1.3

implicit, 9.1.3

high availability, 1.4.3.2, 18.3, 18.3.4, 26.1

and multimaster replication, 26.5

capabilities in Oracle Internet Directory, 26.5

considerations, 18.3.4

load balancing through network re-director, 27.3

of Oracle Internet Directory, 26

human intervention queue, A.7.1

Human Intervention Queue Manipulation Tool, 4.3.4, 25.1.5.3, 25.1.5.3, A.7.1

syntax, A.7.1.1

I

identity management, 19.5

defined, 2.14.1

Oracle Identity Management infrastructure, 19

planning DIT for, 19.1

policies, 2.14.3.2

realms

configuring, 19.6

customizing, 19.6.1

default, 2.14.3.1

defined, 2.14.3

entry in default DIT, 19.4

implementation in Oracle Internet Directory, 19.4

in enterprise deployments, 19.2

in hosted deployments, 19.3

multiple in enterprise deployments, 19.2.2

planning, 19.1.3

single in enterprise deployments, 19.2.1

realm-specific Oracle Context, 19.4

identity management realms, 2.14.3, 19.2

creating additional, 19.6.2

multiple, 19.2.2

single, 19.2, 19.2.1

idle time, specifying maximum for LDAP connections, 5.6

IETF

drafts, enforced by Oracle Internet Directory, B.2

LDAP approval

RFCs enforced by Oracle Internet Directory, B.1

implicit hierarchies, 9.1.3

indexed attributes

locations, C.10.2

orcleventtype, 10.2.1

orcluserdn, 10.2.1

viewing, 8.3.2.6.1, 8.3.2.6.1, 8.3.2.6.1

indexes

created by bulkload, 6.3.1.5

dropping from attributes, 8.3.2.6.3, 10.2.1

by using Oracle Directory Manager, 8.3.2.6.3

inheritance, 2.5.1, 2.5.1, 2.5.1

and access control policies, 14.1.1.1

from superclasses, 8.2.1.1

input file, creating, 5.1.3.1

installation errors, K.1

installation types

in multimaster replication group installation, 25.1.2.1.1

insufficient memory, 21.4.2

IntegerMatch matching rule, B.5, B.5

intelligent client failover, 18.3.4

intelligent network level failover, 18.3.4

intermediate template file

in migration from application-specific repositories, 23.2.1

internationalization, and LDAP, F

Internet Engineering Task Force (IETF). See IETF.

introduction to LDAP and Oracle Internet Directory, 1

I/O subsystem, 20.3.1

in capacity planning, 20.1, 20.3.1

requirements, 20.3

sizing, 20.3.1

throughput, maximizing, 20.3.1

iostat utility, 21.2

IP address takeover (IPAT), 26.6, 26.6.1

J

Java clients, Globalization Support and, 2.8

Java Native Interface, 2.2

JPEG images, adding with ldapadd, A.4.3

jpegPhoto attribute, 2.4.3, 6.2.1.1

K

Kerberos authentication, A.4.2, A.4.3, A.4.6

knowledge references, 2.9.2, 2.10, 2.10, 18.3, 18.3.2

configuring, 6.4

default

configuring, 6.4.2

defined, 2.10

managing, 6.4

overview, 2.9.2

restricting permissions for managing, 2.10

smart

configuring, 6.4.1

superior, 2.10

L

labeledURI attribute, 9.1.2.1, 9.2.3.1, 9.2.5.1

language codes, as attribute options, 2.4.6

latency, average, 21.1

LDAP

add or modify performance, K.4

and internationalization, 2.8

and simplified directory management, 1.2.1

attributes, common, 2.4.3

extensibility, 1.2.2

IETF approval, 1.2.2

search filters, IETF-compliant, A.4.10

search performance, K.4

security, 1.2.2

server instances, 2.1.1, 2.1.1, 2.1.2, 2.1.2

starting by using OIDCTL, A.2.2.1.1

servers, 2.1.2

managing, 5

multithreaded, 1.4.3.1

syntax, B.4, B.4

enforced by Oracle Internet Directory, B.4.1, B.4.1

recognized by Oracle Internet Directory, B.4.2, B.4.3

Version 3, 1.2.2, 1.2.2

LDAP connections, specifying maximum idle time for, 5.6

LDAP Data Interchange Format (LDIF), 4.3, A.1

syntax, A.1

LDAP dispatcher

log file location, 3.6

LDAP replica states, J

ldapadd, 6.2.1, A.4.2, A.4.2

adding entries, A.4.2

adding JPEG images, A.4.3

and Globalization Support, F.5.2

LDIF files in, A.4.2

syntax, A.4.2, A.4.2

ldapaddmt, 6.2.1, 6.2.1, A.4.3

adding entries concurrently, A.4.3

and Globalization Support, F.5.2

LDIF files in, A.4.3

log, A.4.3

syntax, A.4.3

LDAP-based partial replication

determining what is to be replicated, 25.2.6

LDAP-based replica

configuring, 25.2.4

deleting, 25.2.5

LDAP-based replication, 2.9.1, 24.1

agreements, 24.5.2

configuring, 25.2.1

options for configuring, A.7.2

replica states, J

ldapbind, A.4.4, A.4.4

and Globalization Support, F.5.2

syntax, A.4.4, A.4.4

ldapbind operation, 12.4

ldapcompare, 6.2.1, 6.2.1, A.4.5, A.4.5

and Globalization Support, F.5.2

syntax, A.4.5, A.4.5

LDAP-compliant directories, migrating data from, 23.1

ldapdelete, 6.2.1, A.4.6, A.4.6

and Globalization Support, F.5.2

deleting entries, A.4.6

syntax, A.4.6, A.4.6

ldapmoddn, 6.2.1, A.4.7, A.4.7, A.4.7

and Globalization Support, F.5.2

syntax, A.4.7

ldapmodify, 6.2.1, A.4.8, A.4.8, A.4.8

adding ACPs, 14.4.2

adding attributes, 8.3.3.1, 8.3.3.2

adding entry-level ACIs

adding object classes, 8.2.4

adding values to multivalued attributes, A.4.8

and Globalization Support, F.5.2

change types, A.4.8

changing audit level, 10.2.4.2

creating group entries, A.4.8

deleting entries, A.4.8

LDIF files in, A.4.8

modifying attributes, 8.3.3.1, 8.3.3.2

modifying object classes, 8.2.4

replacing attribute values, A.4.8

syntax, A.4.8, A.4.8

ldapmodifymt, 6.2.1, A.4.9

and Globalization Support, F.5.2

by using, A.4.9

LDIF files in, A.4.9

multithreaded processing, A.4.9

syntax, A.4.9, A.4.9

ldap.ora, 5.9.1

server discovery by using, 5.9.1

ldapsearch, 6.2.1, A.4.10

and Globalization Support, F.5.2

filters, A.4.10.1

querying audit log, 10.2

syntax, A.4.10, A.4.10, A.4.10

LDIF

converting directory data to, 6.3.2

file-based modification, not supported by bulkmodify, A.5.3

files

creating, 5.1.3.1

for adding configuration set entries, 5.1.3

importing by using bulkload, 6.3.1

importing, by using bulkload, 6.3.1

in ldapadd commands, A.4.2

in ldapaddmt commands, A.4.3

in ldapmodify commands, A.4.8, A.4.8

in ldapmodifymt commands, A.4.9, A.4.9

referencing in commands, 5.1.3.2

removing proprietary data from in migration, 23.1.2.4

formatting notes, A.1

formatting rules, A.1

syntax, A.1

using, 4.3, A.1

ldifmigrator, 4.3.5

load capability, A.11.1.3

reconcile capability, A.11.1.3

ldifwrite, 4.3.3, A.5.4, A.5.4, A.5.4

and Globalization Support, F.7.2

syntax, A.5.4, A.5.4

Less or Equal filter, C.9.1, C.10.5

line-mode commands, batching, 8.2.4

listener, for directory database, 2.1.1, 2.1.1, 2.1.2

restarting, 25.1.2.4.1

stopping, 25.1.2.4.1, 25.1.2.4.1

listener.ora, 25.1.2.4.1

load balancing, 26.7

and replication, 18.3.3

hardware-based, 26.4.1

network level, 26.4

network-level, 26.4

software-based, 26.4.2

load capability, in OID Migration Tool (ldifmigrator), A.11.1.3

-load option, in bulkload, 6.3.1.5

location-independence, of directories, 1.1.1

log files

debug, viewing, 10.1.3.2, K.5

locations, 3.6

logging

for garbage collectors, enabling and disabling, 22.3

anonymous, C.1

super user, C.1

user, C.1

loose consistency model of replication, 18.3.3

LSNRCTL utility, 25.1.2.4.1

M

m, A.4.3

managing

directory schema, 8

mandatory attributes, 2.5, 8.2.1.2

adding to existing object classes, 8.2.2.2

adding to object classes in use, 6.1.4

entering values for, 6.1.3.1

in a user entry, 23.2.3.1.2

in object classes, C.9.1, C.9.1

redefining, 8.2.2.1

manual resolution of conflicts, 25.1.5

matching rules, B.5

accessDirectiveMatch, B.5

as metadata in schema, 8.1

attribute, 2.4.5, 2.4.5

bitStringMatch, B.5

cannot add to subSchemaSubentry, 8.1

caseExactIA5Match, B.5

caseExactMatch, B.5, B.5

caseIgnoreIA5Match, B.5

caseIgnoreListMatch, B.5

caseIgnoreMatch, B.5, B.5

caseIgnoreOrderingMatch, B.5

distinguishedNameMatch, B.5, B.5

generalizedTimeMatch, B.5

generalizedTimeOrderingMatch, B.5

IntegerMatch, B.5, B.5

numericStringMatch, B.5, B.5

objectIdentifierFirstComponentMatch, B.5

ObjectIdentifierMatch, B.5

OctetStringMatch, B.5

presentationAddressMatch, B.5

protocolInformationMatch, B.5

recognized by Oracle Internet Directory, B.5

stored in schema, 8.1

telephoneNumberMatch, B.5, B.5

uniqueMemberMatch, B.5

Matching Rules tab page, in Oracle Directory Manager, C.9.3

MD4, 16.2.3, 23.1.2.6, B.3.18

MD5, 16.2.3, 23.1.2.6, B.3.18

for password encryption, 16.2.2, 16.3.1

MD5 Digest, SASL authentication mechanism, 12.4.1

member attribute, 9.2.1.1, 9.2.1.1, 9.2.1.1, 9.2.1.1, 9.2.4.1, 9.2.4.1, 9.2.4.1, 9.2.4.1

memory

in capacity planning, 20.1

insufficient, 21.4.2

physical, 20.4

required, 18.5.2

requirements in capacity planning, 20.4, 20.4

tuning, 21.4, 21.4

usage, 18.5.3

virtual, 20.4

menu bar, Oracle Directory Manager, 4.1.3.2

metadata

cache, 2.1.3

directory, defined, 2.1.3

stored in schema, 8.1

metadirectory

deployment considerations, 18.4

middle tier

using proxy user with, 5.4.1, 12.4.2

migrating data, 23.1.1, 23.1.2

from other LDAP directories, 23.1.1

from other LDAP-compliant directories, 23

migration

from application-specific repositories, 23.2

intermediate template file, 23.2.1

from other LDAP directories, 23.1.1

modifiersName attribute, 2.4.1, 23.1.2.5

optional in top, 2.5.2.3

modifyDN, audit log event, 10.2.3

modifyTimestamp attribute, 2.4.1, 23.1.2.5

optional in top, 2.5.2.3

monitoring servers, 10.3

mpstat utility, 21.2

multimaster flag

toggling, 25.1.2.7

multimaster replication, 1.4.3.2, 2.9.1, 18.3.1, 18.3.3, 24.1

and high availability, 26.5

architecture, 24.9.2

conflict resolution, 24.9.3

groups, 24.3.3

in conjunction with fan-out replication groups, 24.3.6

installation types, 25.1.2.1.1

installing, 25.1.2

on the consumer side, 24.9.2.2

on the supplier side, 24.9.2.1

multiple configuration set entries, 13.4.1

multiple server processes, 2.1.2

multiple threads, A.4.9

in ldapaddmt, A.4.3

increasing the number of, A.4.3

multithreaded command-line tools

ldapaddmt, 6.2.1

ldapmodifymt, A.4.9

multithreaded LDAP servers, 1.4.3.1

multivalued attributes, 2.4.2, 2.4.2

adding values to, by using ldapmodify, A.4.8

converting to single-valued, 8.3.1.2

member, 9.2.1.1, 9.2.1.1, 9.2.4.1, 9.2.4.1

orclEntryLevelACI, 14.1.1.3

N

names

of groups, planning, 19.1.2

of users, planning, 19.1.2

names, of object classes, C.9.1, C.9.1

naming contexts, 2.6

backing up and restoring, 11.1

definition, 2.6

discovering, 2.6

in partitioned directories, 2.9.2

managing, 5.3, 5.3

publishing, 2.6, 5.3

by using ldapmodify, 5.3.2, 5.3.2

by using Oracle Directory Manager, 5.3.1, 5.3.1

searching for published, 5.3

subordinate, 2.10

namingContexts attribute, 5.3, B.3.18

multivalued, 5.3

native authentication

contrasted with external authentication, 32.1

defined, 32.1

navigator pane, in Oracle Directory Manager, 4.1.3.1

net service name, A.2.1.2

network

bandwidth, 20.5

capacity planning, 20.5

connectivity, in capacity planning, 20.1

requirements, 20.5, 20.5

Network Interface Cards (NICs), failures of, 26.6.1

network-level

failover, 26.4

load balancing (connection redirection), 26.4

New Attribute Type Advanced tab page, in Oracle Directory Manager, C.9.2

New Attribute Type General tab page, in Oracle Directory Manager, C.9.2

New Constraint dialog box, in Oracle Directory Manager, C.3

New Content Rule dialog box, in Oracle Directory Manager, C.9.4

new features, Preface

release 10g (10.1.2), Preface

release 10g (9.0.4), Preface

release 2.1.1, Preface

release 3.0.1, Preface

release 9.0.2, Preface

New Plug-in dialog box, in Oracle Directory Manager, C.7

new syntaxes, adding, 2.4.4

NLS_LANG environment variable, F.2

setting, F.2

in the client environment, F.6

settings, F.2

no SSL authentication option, C.1

nodes, Oracle Internet Directory, 2.1.1

non-default port, running on, 4.1.2

normal mode, running directory servers in, B.3.5

not null filter, in Oracle Directory Manager, C.9.1

null values, in attributes, 8.2.1.2

number of worker threads used in change log processing, modifying, 25.3.1.3

numericStringMatch matching rule, B.5, B.5

O

o attribute, 2.4.3

O3LOGON algorithm, 16.3.1

object

adding, by using Oracle Directory Manager, 4.1.3.2

object class types

structural, 2.5.2.1

object classes, 2.5

adding, 8.2.1

by using command-line tools, 8.2.4, 8.2.4

by using Oracle Directory Manager, 8.2.3.3

concurrently, by using ldapaddmt, A.4.3

as metadata in schema, 8.1

assigning to entries, 8.2.1, 8.2.1

auxiliary, 2.5.2.2

converting auxiliary, 8.2.2.2

creating, by using Oracle Directory Manager, 4.1.3.2

defining, 8.4.1

deleting

by using Oracle Directory Manager, 8.2.3.5, 8.2.3.5

from base schema, 8.4.3.1

not in base schema, 8.2.2.3

explosion, 8.2.1.4, 8.2.1.4

extensibleObject, 6.4

groupOfNames, 9.2.1.1, 9.2.1.1, 9.2.4.1, 9.2.4.1

guidelines

for adding, 8.2.2.1

for deleting, 8.4.3.1

for modifying, 8.2.2.2

in LDIF files, A.1

in the base schema, modifying, 8.2.2.2, 8.2.2.2

managing

by using command-line tools, 8.2.4, 8.2.4

by using Oracle Directory Manager, 8.2

modifying, 8.2.2.2

by using command-line tools, 8.2.4, 8.2.4

by using Oracle Directory Manager, 8.2.3.4, 8.2.3.4

orclacpgroup, 14.1.1.4.1

orclauditoc, 10.2.1

orclprivilegegroup, 2.1.3

and dynamic groups, 9.1.2.2

redefining mandatory attributes in, 8.2.2.1

referral, 6.4

removing attributes from, 8.2.2.2

removing superclasses from, 8.2.2.2

rules, 2.5.2.2

searching for, 8.2.3.1

searching for, by using Oracle Directory Manager, 8.2.3.1

structural, 2.5.2.1

structural, converting, 8.2.2.2

subclasses, 2.5.1

defining, 8.4.1

superclasses, 2.5.1

top, 2.5.1

types, 2.5.2

abstract, 2.5.2.3

auxiliary, 2.5.2.2

structural, 2.5.1

types of, 2.5.2

unique name of, 8.2.2.1

unique object identifier, 8.2.2.1

viewing, 8.2.3.2, 8.2.3.2, 8.2.3.2, 8.2.3.2

viewing properties, 8.2.3.2

object identifiers, of object classes, C.9.1, C.9.1

objectclass attribute, 10.2.1

objectIdentifierFirstComponentMatch matching rule, B.5

ObjectIdentifierMatch matching rule, B.5

objects

adding, by using a template, 4.1.3.3

adding, by using Oracle Directory Manager, 4.1.3.3

comparing, 4.1.3.2

modifying

by using ldapmodify, 6.2.1

by using Oracle Directory Manager, 4.1.3.2, 4.1.3.3

of ACI directives, 14.1.2.1

removing

by using command-line tools, A.4.6

by using Oracle Directory Manager, 4.1.3.2, 4.1.3.3

removing by using command-line tools, A.4.8

searching for

by using Oracle Directory Manager, 4.1.3.2, 4.1.3.3

searching for, by using Oracle Directory Manager, 4.1.3.3

OCI. See Oracle Call Interface.

OctetStringMatch matching rule, B.5

OID Control Utility, 3.1

restart command, 5.1.2

run-server command, A.2.2

start and stop server instances

stop-server command, A.2.2

syntax, A.2.2, A.2.2

viewing debug log files, 10.1.3.2, K.5

OID Database Password Utility, 5.7

syntax, A.9

OID Database Password Utility (oidpasswd), 4.3.7

OID Database Statistics Collection Tool, A.10

syntax, A.10, A.10

OID Database Statistics Tool, 4.3.6

OID Migration Tool, 4.3.5

load capability, A.11.1.3

reconcile capability, A.11.1.3

OID Monitor, 2.1.1, 2.1.1, 4.3.1, A.2.2

log file location, 3.6

sleep time, A.2.1.1

starting, 3.1, A.2.1.1, A.2.1.1, A.2.1.1, A.2.1.1

stopping, A.2.1.2

syntax, A.2.1, A.2.1

OID Password Utility, 3.4

OID Reconciliation Tool, 4.3.4, 25.1.5.4, 25.1.5.4, A.7.1, A.7.1

syntax, A.7.1.2

OID Server Diagnostic Tool

syntax, A.3

oidctl

viewing debug log files, 10.1.3.2, K.5

oidctl. See OID Control Utility

oidexaup.sql

contents of, 32.2.3

for installing external authentication plug-in, 32.2.1

OIDEXTAUTH PL/SQL package for external authentication, 32.2.1

OIDLDAPD, A.2.2.1.2

oidldapd

log file location, 3.6

oidmon. See OID Monitor.

oidpasswd

syntax, A.9

OIDREPLD, A.2.2.2.2

oidstats.sh, 4.3.6

oidstats.sh utility, A.10

OLTS_ATTRSTORE tablespace, 20.3.3

OLTS_CT_STORE tablespace, 20.3.3

OLTS_DEFAULT tablespace, 20.3.3

one-level search, 6.1.1, A.4.10

one-way authentication, SSL, B.3.5, C.1

online administration tool. See Oracle Directory Manager

online directories, 1.1.1

open cursors parameter, 21.6

OPEN_CURSORS, 21.6.1, 21.6.1

OpenLDAP Community, Preface

operation debug dimension, 10.1.4

operational attributes, 5.2, 5.2

ACI, 12.3

operation-based plug-ins, 30.1

Operations menu item, in Oracle Directory Manager, 4.1.3.2

operations, limiting debugging to specific, 10.1.4

OPMN Control utility (OPMNCTL), starting and stopping OID servers with, A.2.3

optional attributes, 2.5, 8.2.1.2

adding to pre-defined object classes, 8.4.1

entering values for, 6.1.3.1

in object classes, C.9.1, C.9.1

options, attribute, 2.4.6, 2.4.6

Oracle, 2.2

Oracle Advanced Security, use of Oracle Internet Directory, 1.5.2

Oracle Application Server Administrators Group, 17.3.2

Oracle Application Server Certificate Authority

part of Oracle Identity Management, 1.3

Oracle Application Server Cluster (Identity Management) directory server configurations, Preface, 27, 27

benefits, 27.1

how failover works, 27.5

metadata synchronization, 27.4

Oracle Application Server Portal, use of Oracle Internet Directory, 1.5.1

Oracle Application Server Single Sign-On

use of Oracle Internet Directory, 1.5.2

Oracle background processes, 21.6.2

Oracle Call Interface

Oracle Collaboration Suite, use of Oracle Internet Directory, 1.5.1

Oracle components

privileges for administering, 17.1.4

Oracle components, use of Oracle Internet Directory, 1.5

Oracle Context

root, 19.4

Oracle Context Administrators Group, 17.4.5

Oracle data servers

changing password to, 5.7, 5.7

error messages, K.2.1

Oracle Database Advanced Replication, 24.9.1, 24.9.1, 25.1.2.4.2

agreements, 24.5.1

configuring, 25.1.2.4, 25.1.2.4.2, 25.1.2.4.2

by using Replication Management Tool, 25.1.2.4

for directory replication, 25.1.2.4.2

directory replication based on, 2.9.1, 24.1

installing, 25.1.2.4, 25.1.2.4

setting up, 25.1.2.4

Oracle Database Advanced Replication-based replication

options for configuring, A.7.2

Oracle Delegated Administration Services

overview, 2.15

part of Oracle Identity Management, 1.3

Oracle Directory Integration and Provisioning platform, 1.5.3

part of Oracle Identity Management, 1.3

what it is, 2.13, 2.13, 18.4

Oracle Directory Manager, 6.1.1

Access Control Management pane, C.2

adding

ACPs, 14.3.3

attributes, 8.3.2.3

configuration set entries, 5.1.2

entries, 6.1.3, 6.1.3.1

group entries, 6.1.4, 9.2.1

object classes, 8.2.3.3

objects, 4.1.3.2

Apply button vs. OK button, 4.1.3.1

ASR Agreement tab page, C.8

Attributes tab page, C.9.2

attributes, searching for, 8.3.2.2

Authentication Choice list, C.2

By Whom tab page, C.2

Cancel button, 4.1.3.1

Change Log window, C.8

Configuration Sets General tab page, C.10.1

connecting to a directory server, 4.1.3.2, 4.1.3.3

Content Rule dialog box, C.9.4

create access control policy point menu, 4.1.3.2

Create button, 4.1.3.3

Create Entry menu item, 4.1.3.2

Create Like button, 4.1.3.3, 6.1.3.2

Create Like operation, 4.1.3.2

creating an attribute, 4.1.3.2

creating object classes, 4.1.3.2

defined

Delete button, 4.1.3.3

deleting

configuration set entries, 5.1.2

objects, 4.1.3.3

disconnecting from a directory server, 4.1.3.2

displaying help navigator, 4.1.3.2

Edit button, 4.1.3.3

Edit menu, 4.1.3.2

Encryption Choice list, C.2

Ends With filter, C.9.1

entries management, 4.1.7

Exact Match filter, C.9.1, C.10.5

Exit menu item, 4.1.3.2

File menu, 4.1.3.2

Find Attributes button, 8.3.2.2

Find Objects button, 4.1.3.3, 8.2.3.1

Garbage Collector window, C.4

granting access, 14.3

Greater or Equal filter, C.9.1, C.10.5

Help button, 4.1.3.3

Help menu item, 4.1.3.2

launching, 4.1.1

Less or Equal filter, C.9.1, C.10.5

listing attribute types, A.1

managing

ACPs, 4.1.7

configuration set entries, 5.1.2

entries, 4.1.7

object classes, 8.2

Matching Rules tab page, C.9.3

menu bar, 4.1.3.2

modifying

configuration set entries, 2.1.4, 5.1.2

entries, 6.1.4

object classes, 8.2.3.4

objects, 4.1.3.2, 4.1.3.3

replication agreements, 25.3.3.1.1

navigating, 4.1.3

New Attribute Type Advanced tab page, C.9.2

New Attribute Type General tab page, C.9.2

New Constraint dialog box, C.3

New Content Rule dialog box, C.9.4

New Plug-in dialog box, C.7

not null filter, C.9.1

on UNIX, starting, 4.1.1

on Windows 95, starting, 4.1.1

on Windows, starting, 4.1.1

Operations menu, 4.1.3.2

overview, 4.1, 4.1.3.2

Password Policies Account Lockout tab page, C.5

Password Policies General tab page, C.5

Password Policies IP Lockout tab page, C.5

Password Policies Password Syntax tab page, C.5

Password Verifier Profile dialog box, C.6

Present filter, C.10.5

Query Optimization tab page, C.10.4

Refresh button, 4.1.3.3

Refresh Entry button, 4.1.3.3

Refresh Subtree Entries button, 4.1.3.3

removing objects, 4.1.3.2

Replica Agreements tab page, C.8

Replica Naming Context tab page, C.8

Replica Node General tab page, C.8

Replication Server Configuration Set General tab page, C.8

Revert button, 4.1.3.1

root of search, 6.1.1

running, 4.1.1

schema administration, 4.1.7

search criteria bar, 6.1.1, 10.2.5.1

search filters, 8.2.3.1

searching

entries, 6.1.1

for an object, 4.1.3.3

for attributes, 8.3.2.2

selecting attribute syntax type, 8.6.1

SSL Settings tab page, C.11

starting, 4.1.1

on UNIX, 4.1.1

on Windows, 4.1.1

Synchronization Execution tab page, C.12

Synchronization General tab page, C.12

Synchronization Mapping tab page, C.12

Synchronization Status tab page, C.12

system operation attributes displayed, C.10.1

System Passwords tab page, C.10.3

tear-off menu item, 4.1.3.2

toolbar, 4.1.3.3

updating, 4.1.3.2

subtree entry data, 4.1.3.3

View menu, 4.1.3.2

viewing attributes, 6.1.2

Oracle directory replication server

authentication, 24.7.1

component of Oracle Internet Directory, 1.4.2

component of Oracle Internet Directory node, 2.1.1

configuration parameters, location, 25.3.1

starting, 25.1.2.7

uses LDAP to communicate to directory server, 2.1.1

Oracle directory replication server instances

starting, A.2.2.2, A.2.2.2, A.2.2.2.1, A.2.2.2.1, A.2.2.2.1

stopping, A.2.2.2, A.2.2.2.2, A.2.2.2.2, A.2.2.2.2

Oracle directory server instance, 2.1.2

Oracle directory server instances, 1.4.2, 2.1.1, 2.1.1, 2.1.2

managing, 5

starting, 25.1.2.6, A.2.2.1.1

starting by using OIDCTL, A.2.2.1.1

starting byusing OIDCTL, A.2.2.1

stopping, 3.3, A.2.2.1.1, A.2.2.1.2

stopping by using OIDCTL, A.2.2.1

Oracle directory version field, in Oracle Directory Manager, C.10.2

Oracle foreground processes

tuning CPU for, 21.3.2

Oracle Globalization Support, 2.8

Oracle Identity Management, 2.14.2

and Oracle Internet Directory, 1.3, 19

components, 2.14.2

delegation in, 17.1

group information, 19.1.2.2

in application deployments, 1.3

infrastructure, 2.14.2

what it does, 2.14.1

management policies, 2.14.3.2

objects, 19.4

planning, 19.1, 19.1

realms, planning, 19.1.3

user information, 19.1.2.1, 19.5, 19.5

Oracle Internet Directory

advantages of, 1.4.3

and Oracle Identity Management, 1.3

architecture, 1.4.1, 2.1

components, 1.4.2

how Oracle components use it, 1.5

multiple installations on same host, 18.3.4

nodes, 2.1.1

used by Oracle Advanced Security, 1.5.2

used by Oracle Application Server Single Sign-On, 1.5.2

Oracle Internet Directory Self-Service Console, 2.11

in indirect authentication of end users, 12.4.2

Oracle Internet Directory Server Manageability

architecture and components, 10.3.2

capabilties, 10.3.1

configuring, 10.3.4

framework, 10.3

configuring critical events, 10.3.5

location of configuration information, 10.3.3

managing, 10.3.6

Oracle Net Services, 2.1.1, 2.2

preparing for replication, 25.1.2.4.1

use of Oracle Internet Directory, 1.5.1

Oracle Real Application Clusters, Preface, 29

Oracle wallet parameter

modifying, B.3.5

Oracle wallets, B.3.5

changing location of, B.3.5

with ldapadd, A.4.2

with ldapaddmt, A.4.3

with ldapbind, A.4.4

with ldapcompare, A.4.5

with ldapdelete, A.4.6

with ldapmoddn, A.4.7

with ldapmodify, A.4.8

with ldapmodifymt, A.4.9

with ldapsearch, A.4.10

OracleApplication Server Single Sign-On

part of Oracle Identity Management, 1.3

Oraclei

database, 2.1.1

orclACI, 14.1.1.2, 14.1.1.2, 14.1.1.2, B.3.1

access to, 14.1.1.2

optional attribute in top, 2.5.2.3

orclacpgroup object class, 14.1.1.4.1

orclAgreementID, 25.3.3.1

orclAgreementId, B.3.16

Orclanonymousbindsflag attribute, B.3.18

orclauditattribute, B.3.2

orclAuditLevel, B.3.2

orclauditlevel attribute, 10.2.4

orclauditlevel operational attribute, 10.2

orclauditmessage, B.3.2

orclauditmessage attribute, 10.2.1

OrclAuditOC, B.3.2

orclauditoc attributes, 10.2.1

orclauditoc object class, 10.2.1

orclCatalogEntryDN, B.3.10

orclChangeRetryCount, 25.3.1.3, 25.3.1.3, B.3.16, B.3.16

orclConfigSet, B.3.10

orclconfigsetnumber, B.3.10

orclcontainerOC, B.3.10

orclCryptoScheme attribute, B.3.18

orclDBType, B.3.10

orcldebugflag, 10.1.3.2

orclDebugLevel, B.3.10

orcldebuglevel configuration set entry, B.3.5

orclDIPRepository attribute, B.3.18

orclDirReplGroupDSAs, 25.3.3.1.2, B.3.16

orclDITRoot, B.3.10

orclecachemaxentries attribute, B.3.18

orclecachemaxsize attribute, B.3.18

orclEnableGroupCache attribute, B.3.18

orclEntryLevelACI, 14.1.1.3, 14.1.1.3, B.3.1

optional attribute in top, 2.5.2.3

orcleventLog, B.3.10

orclEvents, B.3.10

orcleventtime, B.3.2

orcleventtime attribute, 10.2.1

orcleventtype, B.3.2

orcleventtype attribute, 10.2.1

orclExcludedAttributes, B.3.16

orclexcludedattributes, 24.6.5

orclExcludedNamingcontexts, B.3.16

orclexcludednamingcontexts, 24.6.5

orclGuid, B.3.16

optional attribute in top, 2.5.2.3

orclGuName, B.3.10

orclguname attribute, 5.4.3

orclGuPassword, B.3.10

orclgupassword attribute, 5.4.3

orclhostname, B.3.10

orclIncludedNamingcontexts, B.3.16

orclincludednamingcontexts, 24.6.5

orclIndexedAttribute, B.3.10

orclIndexOC, B.3.10

orclLDAPInstance, B.3.10

orclLDAPSubConfig, B.3.10

ORCLLM algorithm, 16.3.1

orclMatchDNEnabled attribute, B.3.18

ORCLMAXCC, 21.3.1

orclMaxCC, B.3.10

orclmaxcc, 2.1.2

orclmaxcc configuration set entry, B.3.5

ORCLNT algorithm, 16.3.1

orclOpResult, B.3.2

orclopresult attribute, 10.2.1

orclParentGUID, B.3.16

orclpkimatchingrule, 12.4.1

orclPluginConfig object class, B.3.14

orclprivilegegroup object class, 2.1.3

and dynamic groups, 9.1.2.2

orclPrName, B.3.10

orclprname attribute, 5.4.3

orclPrPassword, B.3.10

orclprpassword attribute, 5.4.3

orclpwdAlphaNumeric attribute, B.3.12

orclpwdIllegalValues attribute, B.3.12

orclpwdpolicyenable attribute, B.3.12

orclpwdToggle attribute, B.3.12

orclReplAgreementEntry, B.3.16

orclreplicaDN, B.3.16

orclReplicationProtocol, B.3.16

orclREPLInstance, B.3.10

orclREPLSubConfig, B.3.10

orclrevpwd attribute, 16.2.1

orclSequence, B.3.2

orclsequence attribute, 10.2.1, 10.2.2

orclServerEvent, B.3.2

orclServerMode, B.3.10

orclServerMode attribute, B.3.18

ORCLSERVERPROCS, 21.3.1

orclServerProcs, B.3.10

orclserverprocs configuration set entry, B.3.5

orclSizeLimit, B.3.10

orclSizeLimit attribute, B.3.18

orclskewedattribute attribute, 21.8.2

orclssl authentication configuration set entry, B.3.5

orclsslAuthentication, B.3.17

orclsslEnable, B.3.17

orclsslenable, B.3.5

orclsslenable configuration set entry, B.3.5

orclsslPort, B.3.17

orclsslport configuration set entry, B.3.5

orclsslVersion, B.3.17

orclsslWalletURL, B.3.17

orclsslwalleturl configuration set entry, B.3.5

orclStatsFlag attribute, B.3.18

orclStatsPeriodicity attribute, B.3.18

orclSuffix, B.3.10

orclSuName, B.3.10

orclsuname attribute, 5.4.3

orclSuPassword, B.3.10

orclsupassword attribute, 5.4.3

orclThreadsPerSupplier, B.3.16

orclTimeLimit, B.3.10

orclTimeLimit attribute, B.3.18

orcluniqueattrname, 7.1, B.3.4

orcluniqueenable, 7.1, B.3.4

orcluniqueobjectclass, 7.1, B.3.4

orcluniquescope, 7.1, B.3.4

orcluniquesubtree, 7.1, B.3.4

orclUpdateSchedule, B.3.16

orclUseEncrypt, B.3.10

orcluserdn, B.3.2

orcluserdn attribute, 10.2.1

orclUserV2 attribute, 23.2.3.1.2

orclUserV2 object class, B.3.9

ORCLWEBDAV algorithm, 16.3.1

organization attribute, 2.4.3

organizationalUnitName, 2.4.3

overall throughput, 21.1

P

-PADDNODE option, in Replication Environment Management Tool, A.7.2.12

paging, 20.4

parameters

configuration, for Oracle directory replication server, 25.3.1

dependent on Oracle directory server configuration, 21.6.2

for an active instance, modifying, 13.4.1.1

in an active server instance

modifying, 5.1.2

replication agreement, 25.3.3

required for tuning, 21.6.1

SGA, 21.6.3

partial replication, 2.9.1, 24.1

partitioning, 2.9, 2.9.2, 2.9.2

deployment considerations, 18.3.2, 18.3.2

partitions, 18.3

password policies, 12.5

about, 15.1

conceptual discussion, 12.6

default, 15.1.2

definition, 15.1.1

entry

defined, 2.1.3

error messages, K.3.1

establishing, 15.1.4

for realms

modifying by using command-line tools, 15.2.2.2.2

viewing by using command-line tools, 15.2.2.2.1

management, 2.7

managing by using command-line tools, 15.2.2

plug-in, 31

how it works, 31.1

possible problems, K.3.2

realms, managing by using command-line tools, 15.2.2.2

realm-specific

modifying by using Oracle Directory Manager, 15.2.1.2

viewing by using Oracle Directory Manager, 15.2.1.1

setting by using command-line tools, 15.2.2

setting by using Oracle Directory Manager, 15.2

setting, by using command-line tools, 15.2.2.1

troubleshooting, K.3

verification of, 15.1.3

Password Policies Account Lockout tab page, in Oracle Directory Manager, C.5

Password Policies General tab page, in Oracle Directory Manager, C.5

Password Policies IP Lockout tab page, in Oracle Directory Manager, C.5

Password Policies Password Syntax tab page, in Oracle Directory Manager, C.5

password policy

schema elements, B.3.12

password verifier

schema elements, B.3.13

password verifier entry, defined, 2.1.3

Password Verifier Profile dialog box, in Oracle Directory Manager, C.6

password verifiers

default. for Oracle components, 16.3.3

password wallets

troubleshooting, K.10

password-based authentication, 12.4.1, C.1

passwords

database, 5.7

expiration warning, B.3.12

expiry time, B.3.12

failure count interval, B.3.12

for guest users, 5.4.1, 5.4.1

for proxy users, 5.4.1, 5.4.1

for shell tools, 6.3.1.2

for SSL wallets, C.1

for super user, 5.4.1

for super users, 5.4.1

forcing changes by using command-line tools, 15.2.2.5

integrity

MD4, 16.2.2

lockout, B.3.12

lockout duration, B.3.12

maximum failure, B.3.12

policies, 12.6

setting by using command-line tools, 15.2.2, 15.2.2

setting by using Oracle Directory Manager, 15.2, 15.2

protection, 2.7, 12.5

changing by using ldapmodify, 16.2.4

changing by using Oracle Directory Manager, 16.2.3

changing scheme, 16.2

default verifiers for Oracle components, 16.3.3

managing by using ldapmodify, 16.2.4

managing by using Oracle Directory Manager, 16.2.3

MD5, 16.2.2, 16.2.2, 16.3.1, 16.3.1

O3LOGON, 16.3.1

ORCLLM, 16.3.1

ORCLNT, 16.3.1

ORCLWEBDAV, 16.3.1

SASL/MD5, 16.3.1

setting by using Oracle Directory Manager, C.10.2

SHA, 16.2.2, 16.2.2, 16.3.1, 16.3.1

UNIX Crypt, 16.2.2, 16.3.1

to a directory, changing, 5.4.1

to Oracle data servers, changing, 5.7, 5.7

-PCHGPWD option, in Replication Environment Management Tool, A.7.2.14

-PCHGWALPWD option, in Replication Environment Management Tool, A.7.2.17

-PCLEANUP option, in Replication Environment Management Tool, A.7.2.15

-PDELNODE option, in Replication Environment Management Tool, A.7.2.13

peer-to-peer replication, 2.9.1, 24.1

performance

add or modify, K.4

by using multiple threads, A.4.3

by using orclEntryLevelACI, 14.1.1.2

metrics, 21.1

replication and, 18.3.3

search, K.4

troubleshooting, K.4, K.4

tuning, tools for, 21.2

permissions, 2.7, 12.3

granting

by using command-line tools, 14.4

by using Oracle Directory Manager, 14.3

physical distribution, partitions and replicas, 18.3, 18.3

physical memory, 20.4

-PILOTREPLICA option, in Replication Environment Management Tool, A.7.2.18

PKI authentication, 12.2

plug-in

schema elements

plug-ins

adding, 30.3.1.1, 30.3.2.1

deleting, 30.3.2.3

entry, 2.1.3

external authentication, 32, 32

for password policies, 31

framework, 30

garbage collection, 22.1.1.1

modifying, 30.3.2.2

operation-based, 30.1

password policy

how it works, 31.1

post-operation, 30.1

pre-operation, 30.1

registering

by using command-line tools, 30.3.2

by using Oracle Directory Manager, 30.3.1

when-operation, 30.1

point-to-point replication, 2.9.1, 24.1

policies

identity management, 2.14.3.2

pooling, connection, 1.4.3.1

port, C.1

389, B.3.5

636, B.3.5

default, 4.1.2, A.2.2.1.1

port 389, A.2.2.1.1

port 636, A.2.2.1.1

precedence

at the attribute level, 14.2.1.2

at the entry level, 14.2.1.1

rules

ACL evaluation, 14.2.1

in conflicting access policies, 14.1.1.1

prescriptive access control, 14.1.1.2

Present filter, Oracle Directory Manager, C.10.5

presentationAddressMatch matching rule, B.5

-PRESETPWD option, in Replication Environment Management Tool, A.7.2.16

privacy, data, 2.7, 12.2

by using SSL, 1.4.3.3

privilege groups, 14.1.1.4, 14.1.1.4, 14.1.1.4.2

associated with orclPrivilegeGroup object class, 14.1.1.4.2

defined, 2.1.3

privileges, 2.7, 12.3

privileges for user and group management

delegation of, 17.1.4

process instance location, C.10.2

processes, 2.1.1

Oracle background, 21.6.2

processing power of CPU, 20.6.1

processor affinity on SMP systems, 21.3.3, 21.3.3

protocolInformationMatch matching rule, B.5

proxy users, 12.4.2

definition, 5.4.1

managing, 5.4.1

by using ldapmodify, 5.4.3

by using Oracle Directory Manager, 5.4.2

user name and password, 5.4.1

public key infrastructure, 12.2

pwdCheckSyntax attribute, B.3.12, B.3.12

pwdExpireWarning, B.7.1

pwdExpireWarning attribute, B.3.12, B.7

pwdFailureCountInterval attribute, B.3.12

pwdGraceLoginLimit attribute, B.3.12

pwdInHistory attribute, B.3.12

pwdLockout attribute, B.3.12

pwdLockoutDuration attribute, B.3.12

pwdMaxAge attribute, B.3.12

pwdMaxFailure attribute, B.3.12

pwdMinLength attribute, B.3.12

pwdMustChange attribute, B.3.12

pwdPolicy object class, 15.1.4

Q

queries, database

optimizing, 21.8.2

query entry return limit, C.10.2

Query Optimization tab page, in Oracle Directory Manager, C.10.4

querying

audit log, 10.2

critical events, 10.2

R

RC4_40 encryption, 12.2

RDNs. See relative distinguished names (RDNs)

Real Application Clusters, directory failover in, 29

realms, 19.2

identity management

configuring, 19.6

customizing, 19.6.1

default, 2.14.3.1, 19.5

defined, 2.14.3

implementation in Oracle Internet Directory, 19.4

in enterprise deployments, 19.2

in hosted deployments, 19.3

multiple in enterprise deployments, 19.2.2

planning, 19.1.3

single in enterprise, 19.2.1

realm-specific Oracle Context, 19.4

reconcile capability, in OID Migration Tool (ldifmigrator), A.11.1.3

recovery features, in Oracle, 1.4.3.2

redefining mandatory attributes, 8.2.2.1

redo log buffers parameter, 21.6.3

redundancy, 26.1

and failover, 18.3.1

redundant links, 26.6, 26.6.2

ref attribute, 6.4

referral caching, client-side, 6.4.3

how it works, 6.4.3.1

referral object class, 6.4

referrals, 2.9.2

client-side referral caching, 6.4.3

defined, 2.10

kinds, 2.10

Refresh button, in Oracle Directory Manager, 4.1.3.3

Refresh Entry button, in Oracle Directory Manager, 4.1.3.3

Refresh Entry menu item, 4.1.3.2

Refresh Subtree Entries button, in Oracle Directory Manager, 4.1.3.3

Refresh Subtree Entries menu item, 4.1.3.2

relational databases contrasted to directories, 1.1.1

relative distinguished names (RDNs)

displaying for each entry, 6.1.1

modifying

by using command line tools, 6.2.1, 6.2.1

by using ldapmodify, A.4.8

modifying, by using ldapmoddn, 6.2.1

remtool, 25.1.2.4.2, A.7.2

replica

subentry, 24.6.2

Replica Agreements tab page, in Oracle Directory Manager, C.8

Replica Naming Context tab page, in Oracle Directory Manager, C.8

Replica Node General tab page, in Oracle Directory Manager, C.8

replica state, J

replicas, 2.9.1, 18.3, 24.1

in deployment, 18.3.1

replicated directories, conceptual discussion, 2.9

replication, 2.9.1, 3.6, 24.9.3

adding a new entry to a consumer, H.1

adding a new node for, 25.1.3, 25.1.3.11

agreement entry, 24.6.3

agreement parameters, 25.3.3, 25.3.3

modifying, 25.3.3.1.1, 25.3.3.1.1, 25.3.3.1.2

viewing and modifying, 25.3.3.1.1, 25.3.3.1.2

agreements, 2.9.1, 24.1, 24.5, 24.5, 25.3.3.1.1, C.10.2

adding nodes to, 25.3.3.1.2

configuring, 25.3.3

example of, 24.6.6

LDAP-based, 24.5.2

Oracle Database Advanced Replication, 24.5.1

and SSL, 24.7.2

architecture, 24.9.2

authentication, 24.7.1

change conflicts

monitoring, 25.1.5.1

change logs, 1.4.3.2, 24.9.2.2

change logs in, 24.8

comparison of full and partial, 24.2.2

configuration parameters

modifying, 25.3.1.3

configuring, 25.3

Oracle Database Advanced Replication, 25.1.2.4.2

sqlnet.ora, 25.1.2.4.1

tnsnames.ora, 25.1.2.4.1

conflicts

levels of occurrence, 24.9.3.1

resolving manually, 25.1.5, 25.1.5

typical causes of, 24.9.3.2

considerations, 18.3.3

deleting a node, 25.1.4

deleting an entry, H.2

failure tolerance, 18.3.3

fan-out, 2.9.1, 24.1, 24.3.4, 24.10

process, 24.10

full, 2.9.1, 24.1, 24.2.1

groups, 24.3

fan-out, 24.3.4

multimaster, 2.9.1, 24.3.3, 24.3.3

single-master, 24.3.2, 24.3.2

in deployment, 18.3.3

installing and configuring, 25.1.2

LDAP-based, 2.9.1, 24.1

configuring, 25.2.1, 25.2.4

deleting, 25.2.5

determining what is to be replicated, 25.2.6

installing and configuring, 25.2

options for configuring, A.7.2

load balancing, 18.3.3

log location, C.10.2

loose consistency model, 18.3.3

managing, 25

managing naming contexts and attributes, 24.12.1

modifying a DN, H.5

modifying an RDN, H.4

multimaster, 1.4.3.2, 2.9.1, 18.3.1, 24.1

architecture, 24.9.2

conflict resolution, 24.9.3

installing and configuring, 25.1

on the consumer side, 24.9.2.2

on the supplier side, 24.9.2.1

multimaster with fan-out, 24.3.6

multimaster, single-master, fan-out, 24.3.5

naming context container entry, 24.6.4, 24.6.5

naming contexts

included and excluded, 24.4

nodes

adding, 25.1.3

deleting, 25.1.4, 25.1.4

Oracle Database Advanced Replication, 24.1

Oracle Database Advanced Replication-based, 2.9.1, 2.9.1

options for configuring, A.7.2

Oracle Databased Advanced

filtering, 24.11

overview, 24

partial, 2.9.1, 24.1, 24.2.2

filtering, 24.12

optimization, 24.12.2

peer-to-peer, 2.9.1, 24.1

point-to-point, 2.9.1, 24.1

preparing the Oracle Net Services environment for, 25.1.2.4.1, 25.1.2.4.1

process, H, H, H.1, H.2, H.3, H.4, H.5

on the consumer side, 24.9.2.2

on the supplier side, 24.9.2.1

reasons to implement, 18.3.3

retries

applying changes, 24.9.3

schema elements, B.3.16

security, 24.7

server

log file location, 3.6

single-master, 2.9.1

specifying number of worker threads, C.8

status location, C.10.2

troubleshooting, K.6

Replication Environment Management Tool, 4.3.4

-ADDNODE option, A.7.2.1

-ASRCLEANUP option, A.7.2.5

-ASRRECTIFY option, A.7.2.6

-ASRSETUP option, A.7.2.2

-ASRVERIFY option, A.7.2.7

-BACKUPMETADATA option, A.7.2.19

-CHGPWD option, A.7.2.3

-DELNODE option, A.7.2.4

-DISPASRERR option, A.7.2.8

-DISPQSTAT option, A.7.2.9

-PADDNODE option, A.7.2.12

-PCHGPWD option, A.7.2.14

-PCHGWALPWD option, A.7.2.17

-PCLEANUP option, A.7.2.15

-PDELNODE option, A.7.2.13

-PILOTREPLICA option, A.7.2.18

-PRESETPWD option, A.7.2.16

-RESUMEASR option, A.7.2.11

-SUSPENDASR option, A.7.2.10

syntax, A.7.2

what it does, A.7.2

Replication Management Tool, 25.1.2.4

Replication Server Configuration Set General tab page, in Oracle Directory Manager, C.8

resource access information, 2.15

resource information, 2.15

location in DIT, 2.15

schema elements, B.3.15

resource type information, 2.15

-RESUMEASR option, in Replication Environment Management Tool, A.7.2.11

retry queue, A.7.1

Revert button, in Oracle Directory Manager, 4.1.3.1

RFCs enforced by Oracle Internet Directory, B.1

Root DSE entry

defined, 2.1.3

root of search

entering, 6.1.1

selecting, 6.1.1

root Oracle Context, 19.4

rules, LDIF, A.1

run-server command, by using OID Control Utility, A.2.2

S

SASL

clients enabled with

Digest-MD5 authentication to directory server, 12.7

external authentication, 12.7

SASL/MD5, for generating password verifier, 16.3.1

scalability, of Oracle Internet Directory, 1.4.3.1

schema

adding and changing object classes (online), 8.2.1

administration, 8

by using Oracle Directory Manager, 4.1.7

definition location, C.10.2

definitions in subSchemaSubentry, 8.1

directory, defined, 2.1.3

elements, B, B

add/replace event, 10.2.3

delete event, 10.2.3

for specific Oracle products, B.3

Oracle proprietary, B.3

for orclACI, E.1

for orclEntryLevelACI, E.2

objects, administering by using Oracle Directory Manager, 4.1.7

schema elements

access control, B.3.1

attribute uniqueness, B.3.4

audit log, B.3.2

configuration set entries, B.3.5

debug logging, B.3.6

directory configuration, B.3.10

dynamic groups, B.3.7

garbage collection, B.3.8

password policy, B.3.12

password verifier, B.3.13

plug-in, B.3.14

replication, B.3.16

resource information, B.3.15

server manageability, B.3.11

SSL, B.3.17

scripts, batched line-mode commands, 8.2.4

and compare operations, 2.4.5

criteria bar, in Oracle Directory Manager, 6.1.1, 10.2.5.1

depth, specifying, 6.1.1

filters

IETF-compliant, A.4.10

ldapsearch, A.4.10.1

results, specifying maximum number of entries returned, 6.1.1, 10.2.5.1

Search ACPs

button, 4.1.3.3

menu item, 4.1.3.2

searches

configuring, 5.5

for ACPs when using Oracle Directory Manager, 14.3.1.2

configuring display and duration of, 4.1.6

duration, 10.2.5.1

specifying maximum number of entries returned, 6.1.1, 10.2.5.1

using filters, 8.2.3.1

secure

port 636, 13.2, 13.4.1

Secure Hash Algorithm (SHA), 16.2.3, B.3.18, C.10.2

secure mode

running directory servers in, B.3.5

running server instances in, 13.4.1

security, 1.4.3.3, 2.7

credentials, stored in an external repository, 32

for different clients, 13.4.1

in LDAP Version 3, 1.2.2

in replication, 24.7

SSL parameters for different clients, 13.4.1

within Oracle Internet Directory environment, 2.7

Security Administrators Group, 17.4.1

security and refresh events garbage collector, 22.1.1.2.1

selected audit log events, 10.2.4

server

instances

running, 4.1.1

running in secure mode, 13.4.1

mode, C.10.2

operation time limit, C.10.2

processes

number of, B.3.5

server diagnostic tool

syntax, A.3

server manageability

schema elements, B.3.11

servers

configuring

by using input files, 6.2.1

monitoring, 10.3

starting and stopping by using OPMNCTL, A.2.3

starting, stopping, and restarting, A.2

servers. See also directory servers, directory replication servers, or directory integration and provisioning servers

Service Registry, 2.12

Service to Service Authentication, 2.12

SESSIONS parameter, 21.6

setup process (ldaprepl.sh)

log file location, 3.6

SHA, 16.2.3, 23.1.2.6, B.3.18, C.10.2

for password encryption, 16.2.2, 16.3.1

shared pool size, 21.4.1

parameter, 21.6

shared server, 21.6.2.1

simple authentication, 1.4.3.3, 12.4.1, 12.4.1

Simple Authentication and Security Layer (SASL)

authentication, 12.4.1

clients enabled with

Digest-MD5 authentication to directory, 12.7

external authentication, 12.7

how it works, 12.7

in LDAP Version 3, 1.2.2

single-master replication groups, 24.3.2

single-valued attributes, 2.4.2, 2.4.2

converting to multivalued, 8.3.1.2

size

attribute values, B.4.4

size, B.4.4

of database cache, 18.5.2

sizing, 18.5, 18.5.2

considerations in deployment, 18.5.2

I/O subsystem, 20.3.1

tablespaces, 20.3.3

skewed attributes, 21.8.2

sleep time, OID Monitor, A.2.1.1

smart knowledge references (referrals)

configuring, 6.4.1, 6.4.1

sn attribute, 2.4.3

software-based connection redirection, 26.4.2

software-based load balancing (connection redirection), 26.4.2

sort area parameter, 21.6.3

special purpose directories, 1.1.2

SPECint_rate95 baseline, 20.6.1, 20.6.1

sponsor node, 25.1.3.4

sqlnet.ora, configuring for replication, 25.1.2.4.1

SRV records

OID-specific format for, 5.9.2.2

standard format for, 5.9.2.2

SSHA, B.3.18

SSL, 13.4.1.2, C.1

attribute values, B.3.17

authenticated access, 1.4.3.3

authentication

for Oracle Directory Manager, C.1

one-way, C.1

server only, C.1

cipher suites, 13.1

SSL_DH_anon_EXPORT_WITH_DES40_CBC_SHA, 13.1

SSL_DH_anon_EXPORT_WITH_RC4_40_MD5, 13.1

SSL_DH_anon_WITH_3DES_EDE_CBC_SHA, 13.1

SSL_DH_anon_WITH_DES_CBC_SHA, 13.1

SSL_DH_anon_WITH_RC4_128_MD5, 13.1

SSL_RSA_EXPORT_WITH_DES40_CBC_SHA, 13.1, 13.1

SSL_RSA_EXPORT_WITH_RC4_40_MD5, 13.1, 13.1

SSL_RSA_WITH_DES_CBC_SHA, 13.1

SSL_RSA_WITH_NULL_SHA, 13.1

SSL_RSA_WITH_RC4_128_MD5, 13.1

supported in Oracle Internet Directory, 13.1

client scenarios, 13.2, 13.2

configuration parameters, 13.4.1

modifying, 13.4.1.1, 13.4.1.1

configuring, 13.4.1, C.1, C.1

data privacy, 1.4.3.3

default port, B.3.5, B.3.5

enabling, 13.4.1, B.3.5

with ldapadd, A.4.2

with ldapaddmt, A.4.3

with ldapbind, A.4.4

with ldapmodify, A.4.8

with ldapmodifymt, A.4.9

enabling Oracle Directory Manager to use, C.1

handshake, 13.1

issues specific to this release, 13.3

managing, 13

modifying orclsslwalleturl parameter, B.3.5

no authentication, B.3.5, C.1

parameters, 13.4.1

configuring by using command-line tools, 13.4.1.2

configuring by using Oracle Directory Manager, 13.4.1.1

password to user wallet, C.1

port 636, 13.4.1

replication and, 24.7.2

schema elements, B.3.17

strong authentication, 12.2

toggling on and off, B.3.5

two-way authentication, B.3.5

Version 2, 13.2

Version 3, 13.2

wallets, B.3.5, B.3.5

changing location of, B.3.5

SSL Settings tab page, in Oracle Directory Manager, C.11

SSL setup

troubleshooting, K.7

SSL_DH_anon_EXPORT_WITH_DES40_CBC_SHA, 13.1

stack, technology, 26.2

start-server commands, 5.1

static directory server discovery, 5.9.1

static groups, 9.1.1

entries

managing by using command-line tools, 9.2.2

managing by using Oracle Directory Manager, 9.2.1

modifying by using ldapmodify, 9.2.2.2, 9.2.5.3

schema elements for creating, 9.1.1.1

stop-server command, A.2.2

store-and-forward transport, in Oracle Database Advanced Replicaton, 24.9.1

striping, 21.5

strong authentication, 12.4.1

structural access items, 14.3.7.1.1

structural object class type, 2.5.1, 2.5.2.1

structural object classes, 2.5.2.1

converting, 8.2.2.2

structure rules, not enforced by Oracle Internet Directory, 2.5.2.2

structure, audit log entries, 10.2.1

subclasses, 2.5.1, 2.5.1

subconfig, B.3.10

subentries, definition, 8.1

subordinate naming contexts, 2.10

subregistry, B.3.10

subSchemaSubentry

adding object classes to, 8.1

holding schema definitions, 8.1

modifying, 8.1

subtree entry data, updating by using Oracle Directory Manager, 4.1.3.3

subtree level search, 6.1.1, A.4.10

subtrees

displaying, 6.1.1

super users

definition, 5.4.1

logging in as, C.1

managing, 5.4.1

by using ldapmodify, 5.4.3

by using Oracle Directory Manager, 5.4.2

user name and password, 5.4.1

superclass selector, 6.1.3.1

superclasses, 2.5.1, 2.5.1

and inheritance, 8.2.1.1

of object classes, C.9.1, C.9.1

superior knowledge references (referrals), 2.10

suppliers

defined, 2.9.1, 24.1

surname attribute, 2.4.3

-SUSPENDASR option, in Replication Environment Management Tool, A.7.2.10

Symmetric Multi-Processor (SMP) systems, 21.3.3

Synchronization Execution tab page, in Oracle Directory Manager, C.12

Synchronization General tab page, in Oracle Directory Manager, C.12

Synchronization Mapping tab page, in Oracle Directory Manager, C.12

Synchronization Status tab page, in Oracle Directory Manager, C.12

syntax

attribute, 2.4.4, 2.4.4

bulk tools, A.5

bulkdelete, A.5.1

bulkload, A.5.2

bulkmodify, A.5.3

Catalog Management Tool, A.4.1

catalog management tool, A.4.1

catalog.sh, A.4.1

command-line tools, A.4

Directory Integration and Provisioning Assistant, A.8

Human Intervention Queue Manipulation Tool, A.7.1.1

LDAP, B.4

ldapadd, A.4.2

ldapaddmt, A.4.3

ldapbind, A.4.4

ldapcompare, A.4.5, A.4.5

ldapdelete, A.4.6, A.4.6

ldapmoddn, A.4.7

ldapmodify, A.4.8, A.4.8

ldapmodifymt, A.4.9

ldapsearch, A.4.10, A.4.10

LDIF, A.1

LDIF and command-line tools, A

ldifwrite, A.5.4

OID Control Utility, A.2.2

OID Database Password Utility, A.9

OID Database Statistics Collection Tool, A.10

OID Monitor, A.2.1

OID Reconciliation Tool, A.7.1.2

OID Server Diagnostic Tool, A.3

oidctl, A.2.2

oidpasswd, A.9

remtool, A.7.2

replication conflict resolution tools, A.7.1

Replication Environment Management Tool, A.7.2

server diagnostic tool, A.3

stored in schema, 8.1

syntaxes

cannot add to subSchemaSubentry, 8.1

new, adding, 2.4.4

viewing

by using by using ldapsearch, 8.6.2

by using Oracle Directory Manager, 8.6.1

System Global Area (SGA), 21.4

parameters, 21.6.3

sizing, 21.4.1

tuning for Oracle, 21.4.1

tuning parameters, 21.6.3

system operation attributes

displayed in Oracle Directory Manager, C.10.1

system operational attributes, 5.2

setting, 5.2, 5.2, 5.2

by using ldapmodify, 5.2.2, 5.2.2

by using Oracle Directory Manager, 5.2.1, 5.2.1

viewing, 5.2

System Passwords tab page, in Oracle Directory Manager, C.10.3

system resource events garbage collector, 22.1.1.2.1

SYSTEM tablespace, 20.3.3

T

tablespaces, 20.3.3

OLTS_ATTRSTORE, 20.3.3

OLTS_CT_STORE, 20.3.3

OLTS_DEFAULT, 20.3.3

sizing, 20.3.3

SYSTEM, 20.3.3

TCP/IP connections, 26.4, 26.6.1, B.3.5

tear-off, in Oracle Directory Manager, 4.1.3.2

technology stack, 26.2

telephoneNumberMatch matching rule, B.5, B.5

templates, creating entries from, 6.1.3.2

throughput, 20.3.1

overall, 21.1

time-based change log purging, 22.1.4

tnsnames.ora

configuring for replication, 25.1.2.4.1

tombstone garbage collector, 22.1.1.2.1

tools

for tuning, 21.2

top object class, 2.5.1, 2.5.2.3

optional attributes in, 2.5.2.3

top utility, 21.2

tracing function calls, 10.1.3.2

Transparent Application Failover (TAF), 29.1

tree view

browsing, 6.1.1

selecting root of search, 6.1.1

troubleshooting, K, K

change log garbage collection, K.8

directory replication, K.6

directory server instance startup, K.5

dynamic password verifiers, K.9

password policies, K.3

password wallets, K.10

performance, K.4

SSL setup, K.7

typical problems in Oracle Internet Directory, K

Trusted Application Administrators Group, 17.3.4

tunables, database, 21.6

tuning, 18.5, 21, 21

considerations, 18.5.3

CPU for Oracle foreground processes, 21.3.2

CPU for Oracle Internet Directory processes, 21.3.1

CPU usage, 21.3

deployment considerations, 18.5.3

disk, 21.5

memory, 21.4

overview, 21.1

SGA parameters, 21.6.3

System Global Area (SGA) for Oracle, 21.4.1

tools, 21.2, 21.2

two-way authentication, SSL, B.3.5

types

of attributes, 2.4

of object classes, C.9.1, C.9.1

U

Unicode Transformation Format 8-bit (UTF-8)

uniqueMemberMatch matching rule, B.5

UNIX crypt

for password encryption, 16.2.2, 16.3.1, 23.1.2.6, B.3.18, C.10.2

for password hashing, 16.2.3

UNIX, starting Oracle Directory Manager on, 4.1.1, 4.1.1

unspecified access, 14.1.2.3, 14.3.5.2, 14.3.5.2

upgradecert.pl tool, A.6

user

names and passwords, managing

by using ldapmodify, 5.4.3

by using Oracle Directory Manager, 5.4.2

password modification event, 10.2.3

user certificates, searching directory for, I

User field, in Oracle Directory Manager, C.1

User Management Application Administrators Group, 17.3.3

User Preferences

button, 4.1.3.3

menu item, 4.1.3.2

User Proxy Privilege Group, 17.4.4

usercertificate attribute, Preface, I

userPassword attribute, hash values, 23.1.2.6

users

entries

adding by using ldapadd, 6.2.1.1

adding by using Oracle Directory Manager, 6.1.3.3

modifying by using ldapmodify, 6.2.1.2

modifying by using Oracle Directory Manager, 6.1.4.1

guest, 5.4.1

names and containment, planning, 19.1.2

proxy, 5.4.1, 12.4.2

super, 5.4.1

UTF-8. See Unicode Transformation Format 8-bit

UTLBSTAT.SQL, 21.2

UTLESTAT.SQL, 21.2

V

values, deleting attribute, A.4.8

Verifier Services Group, 17.4.3

View menu, in Oracle Directory Manager, 4.1.3.2

virtual memory, 20.4

vmstat utility, 21.2

W

wallets

changing location of, B.3.5

location, B.3.5

passwords, C.1

SSL, B.3.5

wildcards, in setting access control policies, 14.4.4

Windows

starting Oracle Directory Manager on, 4.1.1

Task Manager, 21.2

Windows Performance Monitor, 21.2

worker threads, 21.6.2

specifying in replication, C.8