List of Tables
- 1-1 Comparison of Online Directories and Relational Databases
- 2-1 Components of an Oracle Internet Directory Node
- 2-2 Attributes Created with Each New Entry
- 2-3 Common LDAP Attributes
- 3-1 Tasks to Reset the Default Security Configuration
- 3-2 Log File Locations
- 4-1 Operating System-Specific Instructions for Starting Oracle Directory Manager
- 4-2 Oracle Directory Manager Menu Bar
- 4-3 Oracle Directory Manager Toolbar
- 4-4 Task Areas in Oracle Directory Manager
- 4-5 Process Control Items in the ODS_PROCESS Table
- 4-6 Tools for Starting, Stopping, and Monitoring Oracle Internet Directory Servers
- 4-7 Tools for Managing Entries
- 4-8 Command-Line Tools for Performing Bulk Operations
- 4-9 Command-Line Tools for Managing Replication
- 4-10 Routine Administration Tasks
- 5-1 Definitions of Super User, Guest User, and Proxy User
- 5-2 Names, Passwords, and Attributes for Super, Guest, and Proxy Users
- 5-3 Entry Alias Dereferencing Messages
- 5-4 Arguments in a Service Location Record (SRV)
- 6-1 Command-Line Tools for Managing Entries
- 7-1 Attribute Uniqueness Constraint Entry
- 8-1 Content Rule Parameters
- 9-1 orclDynamicGroup Attributes for "Connect By" Assertions
- 9-2 Static and Dynamic Group Considerations
- 10-1 Fields in Trace Messages
- 10-2 Debug Logging Levels
- 10-3 Debug Dimension Values for LDAP Operations
- 10-4 Attributes of the orclAuditoc Object Class
- 10-5 Auditable Events
- 10-6 Audit Mask Levels
- 10-7 Example: Setting the Audit Level
- 10-8 Components of Oracle Internet Directory Server Manageability
- 10-9 Critical Event Levels
- 10-10 Fields in the Start a New LDAP Server Instance Window of the Application Server Control Console
- 10-11 Fields in the Restart an LDAP Server Instance Window of the Application Server Control Console
- 13-1 SSL Cipher Suites Supported in Oracle Internet Directory
- 14-1 Sample Security Groups
- 14-2 Types of Access
- 14-3 LDAP Operations and Access Needed to Perform Each One
- 14-4 Attribute States During ACL Evaluation
- 15-1 Tasks and Tools for Managing Password Polices
- 16-1 Attributes for Storing Password Verifiers in User Entries
- 17-1 Default Privileges Granted to Everyone and to Each User
- 17-2 Privileges for Administering the Oracle Technology Stack
- 17-3 Characteristics of the Subscriber DAS Create User Group
- 17-4 Characteristics of the Subscriber DAS Edit User Group
- 17-5 Characteristics of the DAS Delete User Group
- 17-6 Characteristics of the User Privilege Assignment Group
- 17-7 Characteristics of the Group Creation Group
- 17-8 Characteristics of the Group Edit Group
- 17-9 Characteristics of the Group Delete Group
- 17-10 Characteristics of the Group Privilege Assignment Group
- 17-11 Characteristics of the Oracle Application Server Administrators Group
- 17-12 Characteristics of the User Management Application Administrators Group
- 17-13 Characteristics of the Trusted Application Administrators Group
- 17-14 Characteristics of the User Security Administrators Group
- 17-15 Characteristics of the Authentication Services Group
- 17-16 Characteristics of the Verifier Services Group
- 17-17 Characteristics of the User Proxy Privilege Group
- 17-18 Characteristics of the Oracle Context Administrators Group
- 17-19 Characteristics of the Common User Attributes Group
- 17-20 Characteristics of the Common Group Attributes Group
- 17-21 Characteristics of the Service Registry Viewers Group
- 17-22 Characteristics of the Common Group Attributes Group
- 18-1 CPU Power for Various Deployment Scenarios
- 18-2 Approximate Disk Space Requirements for Variously Sized DITs
- 18-3 Estimates of the Memory Requirements for Various DIT Sizes
- 19-1 Oracle Identity Management Objects
- 19-2 Customizing the Default Identity Management Realm
- 20-1 Capacity Planning Terminology
- 20-2 Assumptions about Entry Types and Their Sizes
- 20-3 Overall Count of Entries
- 20-4 Directory Lookups in a Single Day
- 20-5 Working Hour Loads
- 20-6 Disk Space Requirements
- 20-7 Tablespaces Used to Store Oracle Internet Directory Data
- 20-8 Variables Used for Size Calculation
- 20-9 Size of Individual Tablespaces
- 20-10 Values for Variables Used for Sizing Calculations
- 20-11 Tablespace Sizes
- 20-12 Minimum Memory Requirements for Different Directory Configurations
- 20-13 Maximum Possible Throughput for Two Types of Operations
- 20-14 Rough Estimates of CPU Requirements
- 21-1 Suggested Values for ORCLSERVERPROCS and ORCLMAXCC Parameters
- 21-2 Recommended RDBMS Values for Various Client Loads
- 23-1 Mandatory Attributes in a User Entry
- 24-1 Types of Directory Replication Groups
- 24-2 Comparison of Full and Partial Replication
- 24-3 Types of Data Transfer Between Nodes in a Directory Replication Group
- 24-4 Multimaster. Single-Master, and Fan-Out Replication Compared
- 24-5 Types of Replication Conflict
- 25-1 Data Migration Using ldifwrite/bulkload versus Automatic Bootstrapping
- 25-2 Nodes in Example of Partial Replication Deployment
- 30-1 Types of Operation-Based Plug-ins
- A-1 Properties in an LDIF File
- A-2 Arguments for Starting OID Monitor
- A-3 Arguments for Stopping OID Monitor
- A-4 Arguments for Starting a Directory Server by Using OIDCTL
- A-5 Arguments for Starting a Directory Replication Server by Using OIDCTL
- A-6 Description of Arguments for Starting the Oracle Directory Integration and Provisioning Server
- A-7 Arguments to oiddiag
- A-8 Arguments for the Catalog Management Tool (catalog.sh)
- A-9 Arguments for ldapadd
- A-10 Arguments for ldapaddmt
- A-11 Arguments for ldapbind
- A-12 Arguments for ldapcompare
- A-13 Arguments for ldapdelete
- A-14 Arguments for ldapmoddn
- A-15 Arguments for ldapmodify
- A-16 Arguments for ldapmodifymt
- A-17 Arguments for ldapsearch
- A-18 Arguments for bulkdelete
- A-19 Arguments for bulkload.sh
- A-20 Arguments for bulkmodify
- A-21 Arguments for ldifwrite
- A-22 Parameters for upgradecert.pl
- A-23 Arguments for Moving a Change from the Human Intervention Queue into the Retry Queue
- A-24 Arguments for Moving a Change from the Human Intervention Queue into the Purge Queue
- A-25 Arguments for Reconciling Inconsistent Data by Using the OID Reconciliation Tool
- A-26 Arguments for the Replication Environment Management Tool (remtool)
- A-27 Options for Configuring and Managing an Oracle Database Advanced Replication-Based DRG (remtool)
- A-28 Options for Configuring and Managing an LDAP-Based Replication DRG (remtool)
- A-29 Options for Supporting Application Server Reassociation (remtool)
- A-30 Arguments Used With the -PILOTREPLICA Option
- A-31 Arguments Used With the -BACKUPMETADATA Option
- A-32 Summary of Functionality of the Directory Integration and Provisioning Assistant
- A-33 Parameters for Creating, Modifying, and Deleting Synchronization Profiles by Using the Directory Integration and Provisioning Assistant
- A-34 Properties Expected by createprofile and modifyprofile Commands
- A-35 Parameters of the listprofiles Command
- A-36 Parameters of the showprofile Command
- A-37 Parameters of the expressconfig Command
- A-38 Parameters of the bootstrap Command
- A-39 Bootstrapping Configuration File Properties
- A-40 Parameters of the chgpasswd Command
- A-41 Scenarios for Reassociating Directory Integration Profiles
- A-42 Parameters of the reassociate Command
- A-43 Limitations of Bootstrapping in the Directory Integration and Provisioning Assistant
- A-44 ldifmigrator Parameters
- A-45 Predefined Substitution Variables
- A-46 Substitution Variables for the subscriber "acme"
- A-47 Different Modes for Use of -reconcile
- A-48 -reconcile SAFE Type LDIF Records
- A-49 -reconcile NORMAL Type LDIF Records
- A-50 -reconcile SAFE_EXTENDED type LDIF records
- A-51 Error Messages of OID Migration Tool
- A-52 Conditions for Using Oracle Internet Directory Configuration Assistant for Specific Database Components
- A-53 Parameters of Oracle Internet Directory Configuration Assistant
- A-54 Parameters for Creating an Oracle Context
- A-55 Parameters for Upgrading an Oracle Context
- A-56 Parameters for Deleting an Oracle Context
- A-57 Parameters for Configuring the ldap.ora File
- A-58 Parameters for Converting an Oracle Context to an Identity Management Realm
- B-1 RFCs Enforced by Oracle Internet Directory
- B-2 Access Control Schema Elements
- B-3 Audit Log Schema Elements
- B-4 Attributes in Integration Profiles for Third-Party Directories
- B-5 Oracle Internet Directory Schema Elements that Correspond to Microsoft Active Directory-Specific Attributes
- B-6 Attribute Uniqueness Constraint Entry
- B-7 Configuration Set Entry Attributes
- B-8 Debug Logging Schema Elements
- B-9 orclDynamicGroup Attributes for "Connect By" Assertions
- B-10 Garbage Collection Configuration Parameters
- B-11 Attributes for the Audit Log Garbage Collector
- B-12 Attributes of the Change Log Garbage Collector
- B-13 Attributes of the General Statistics Garbage Collector
- B-14 Attributes of the Health Statistics Garbage Collector
- B-15 Attributes of the Security and Refresh Events Garbage Collector
- B-16 Attributes of the System Resource Events Garbage Collector
- B-17 Attributes of the Tombstone Garbage Collector
- B-18 Attribute Value Pairs for Creating a Garbage Collector
- B-19 Attribute Value Pairs for Modifying a Garbage Collector
- B-20 Attribute Value Pairs for Deleting a Garbage Collector
- B-21 Attributes in the orclUserV2 Object Class
- B-22 Oracle Internet Directory Configuration Parameters
- B-23 Attributes for Oracle Internet Directory Server Manageability
- B-24 Attributes of the pwdPolicy Object Class
- B-25 Password Policy Operational Attributes of the Top Object Class
- B-26 Attributes for Storing Password Verifiers in User Entries
- B-27 Plug-in Attribute Names and Values
- B-28 Resource Access Descriptor (RAD) Attributes
- B-29 Attributes for Resource Type Information
- B-30 Replication Schema Elements
- B-31 Directory Replication Server Configuration Parameters
- B-32 Attributes of the Replica Subentry
- B-33 Attributes of the Replication Agreement Entry
- B-34 Attributes of the Replication Naming Context Entry
- B-35 Modifiable System Operational Attributes
- B-36 User Attributes
- B-37 Controls Supported by Oracle Internet Directory
- B-38 Password Policy Controls
- B-39 Controls for Dynamic Password Verifiers
- C-1 Fields in the Credentials Tab Page
- C-2 Fields in the SSL Tab Page
- C-3 Fields in the Access Control Management Pane
- C-4 Fields in Authentication Choice List
- C-5 Fields in Encryption Choice List
- C-6 Entities to Whom You Are Granting Access in the By Whom Tab Page
- C-7 Access Rights for Attributes
- C-8 Fields in the New Constraint Dialog Box
- C-9 Fields in the Garbage Collector Window
- C-10 Fields in the Password Policies General Tab Page
- C-11 Fields in the Password Policies Account Lockout Tab Page
- C-12 Fields in the Password Policies IP Lockout Tab Page
- C-13 Fields in the Password Policies Password Syntax Tab Page
- C-14 Fields in the Password Verifier Profile Dialog Box
- C-15 Fields in the New Plug-in Dialog Box
- C-16 Fields in the Replication Server Configuration Set: General Tab Page
- C-17 Fields in the ASR Agreement Tab Page
- C-18 Fields in the Replica Node: General Tab Page
- C-19 Columns in the Replica Agreements Tab Page
- C-20 Fields in the Replica Naming Context Tab Page
- C-21 Fields in the Change Log Window
- C-22 Object Class Properties Listed in Searches in Oracle Directory Manager
- C-23 Search Filters for Object Classes
- C-24 Buttons Used in Searches for Object Classes in Oracle Directory Manager
- C-25 Fields in the New Object Class Dialog Box
- C-26 Columns in the Attributes Tab Page in Oracle Directory Manager
- C-27 Search Filters for Attributes
- C-28 Buttons in Searches for Attributes in Oracle Directory Manager
- C-29 Fields in the General Tab Page of the New Attribute Type Dialog
- C-30 Fields in the Advanced Tab Page of the New Attribute Type Dialog
- C-31 Fields in the Matching Rules Tab Page
- C-32 Fields in the New Content Rule Dialog Box
- C-33 Fields in the Content Rule Dialog Box
- C-34 Fields in the Configuration Sets Dialog Box-General Tab Page
- C-35 Fields in the Configuration Sets-SSL Settings Tab Page
- C-36 System Operation Attributes Displayed in Oracle Directory Manager
- C-37 Fields in the System Passwords Tab Page
- C-38 Fields in the Query Optimization Tab Page
- C-39 Search Filters for Entries
- C-40 Buttons Used in Searches for Entries
- C-41 Fields in the SSL Settings Tab Page
- C-42 Fields on the General Tab Page for Synchronization in Oracle Directory Manager
- C-43 Fields on the Execution Tab for Synchronization in Oracle Directory Manager
- C-44 Fields on the Mapping Tab Page for Synchronization in Oracle Directory Manager
- C-45 Fields on the Status Tab Page for Synchronization in Oracle Directory Manager
- F-1 Unicode Implementations
- F-2 Components of the NLS_LANG Parameter
- F-3 Examples: Using the -E Argument with Command-Line Tools
- J-1 LDAP Replica States
- K-1 Standard Error Messages
- K-2 Additional Error Messages
- K-3 Password Policy Violation Error Messages
- K-4 Error Messages for Dynamic Password Verifiers