1/35
Contents
List of Examples
List of Figures
List of Tables
Title and Copyright Information
Preface
Audience
Documentation Accessibility
Related Documents
Conventions
What's New in This Guide?
New Features for Release 11
g
Part I Understanding Oracle Virtual Directory Services
1
Understanding Oracle Virtual Directory
What is Oracle Virtual Directory?
Overview
Features
Functionality
Architecture and Topology
Oracle Virtual Directory in Oracle Fusion Middleware
Oracle's Directory Services Portfolio
Why the Enterprise Directory Is Not Enough
Oracle Virtual Directory In Enterprise Directory Network Environments
Virtual Namespace Mapping
2
Understanding Oracle Virtual Directory Adapters
What is an Adapter?
Understanding the LDAP Adapter
LDAP Adapter Deployments
LDAP Adapter Read, Write, Rename, and Compare Support
Access Control and the LDAP Adapter
Understanding the Database Adapter
Access Control and the Database Adapter
JDBC Java Class Libraries
Understanding Database Adapter Mapping
Understanding the Local Store Adapter
Migrating Local Store Adapter Data
Understanding the Join View Adapter
Typical Join View Adapter Deployments
Join Relationships
Simple Joiner
Conditional Simple Joiner
OneToMany Joiner
Shadow Joiner
Custom Join
Understanding the Custom Adapter
Understanding How Adapters Create the Virtual Directory
Example of a Basic Virtual Directory
Example of a Virtual Directory Using the Join View Adapter
Understanding Adapter Namespaces
Understanding Adapter Templates
Default Template
LDAP Adapter Templates
Active_Directory
CA_eTrust
EUS_ActiveDirectory
EUS_OID
EUS_Sun
General_LDAP_Directory
IBM_Directory
Novell_eDirectory
OAM/AD Adapter with Mapper
OAM/AD Adapter with SSL, Mapper
OAM/AD Adapter with Script
OAM/ADAM Adapter with Mapper
OAM/ADAM Adapter with SSL, Mapper
OAM/ADAM Adapter with Script
OAM/SunOne Adapter with Mapper
OAM/SunOne Adapter with Script
Oracle_Internet_Directory
Siemens_DirX
SunOne_Directory
Local Store Adapter Templates
Local_Storage_Adapter
Database Adapter Templates
OAM/DB Adapter with Script
3
Understanding Oracle Virtual Directory Routing
What is Routing?
Understanding Routing Settings
Priority
Filters to Include and Filters to Exclude
DN Matching
Levels
Attribute Flow Settings
Retrievable Attributes
Storeable Attributes
Unstoreable Attributes
Visibility
Bind Support
Criticality
Views
Creating and Configuring Views
Include Binds From and Exclude Binds From
4
Understanding Oracle Virtual Directory Plug-Ins
What is a Plug-In?
Namespace Filtering
Understanding the General Purpose Plug-Ins
Dump Transactions Plug-In
Configuration Parameters
DynamicEntryTree Plug-In
Configuration Parameters
FlatTree Plug-In
Configuration Parameters
Dynamic Groups Plug-In
Testing Group Membership
Configuration Parameters
Cache Plug-In
Configuration Parameters
ObjectClass Mapper Plug-In
Configuration Parameters
Sub-Tree Plug-In
Configuration Parameters
Performance Monitor Plug-In
Configuration Parameters
UniqueEntry Plug-In
Configuration Parameters
Adapter Plug-In Version
Understanding the Enterprise User Security and Oracle Net Services Plug-Ins
EUSActiveDirectory Plug-In
Configuration Parameters
EUSiPlanet Plug-In
Configuration Parameters
EUSOID Plug-In
Configuration Parameters
EUSeDirectory Plug-In
Configuration Parameters
EUSMemberDNMapping Plug-In
Configuration Parameters
euslockout Plug-In
Configuration Parameters
ONames Plug-In
Configuration Parameters
subschemasubentry Plug-In
Configuration Parameters
Understanding the Microsoft Active Directory Plug-Ins
ActiveDirectory Password Plug-In
Configuration Parameters
Active Directory Ranged Attributes Plug-In
Configuration Parameters
InetAD Plug-In
Configuration Parameters
5
Understanding Oracle Virtual Directory Mapping
What is a Mapping?
When to Use a Mapping and When to Use a Custom Plug-in
Overview: Deploying Mappings
Understanding Mapping Templates
Active_Directory_to_inetOrg
Common_Name_to_Given_Name
ConditionalPublish
DB_Groups
Map_DB_Password
Example Mapping Deployments
Constructing Common Name Attributes from Givenname and Surname Attributes
Mapping Microsoft Active Directory Schema
Mapping Functions
Methods
Data Objects
6
Understanding Oracle Virtual Directory Security
Overview
Understanding Oracle Virtual Directory Authentication
Pass-Through Authentication
CRAM-MD5 and SASL Binding
Proxy Account Authentication
Client Certificate Authentication
Understanding Oracle Virtual Directory Access Control
Source Directory Access Control
Oracle Virtual Directory Access Control
Access Control and Groups
Oracle Virtual Directory Access Control Components
Overview
Access Control Scope
Access Control Rights
Attribute Access Control
Access Control Permissions
Access Control Subjects
Oracle Virtual Directory Access Control List Enforcement
Understanding Wallet and Certificate Management
7
Understanding Oracle Virtual Directory Fault Tolerance
Overview
DNS and Network Fail Over
Oracle Virtual Directory Fail Over
Local Store Adapter Fail Over
Proxied Sources Fail Over
Part II Basic Administration
8
Getting Started with Administering Oracle Virtual Directory
Getting Started After Installing 11
g
Release 1 (11.1.1)
Basic Tasks for Configuring and Managing Oracle Virtual Directory
Getting Started With Oracle Directory Services Manager
Understanding Oracle Directory Services Manager
Invoking Oracle Directory Services Manager
Logging in to the Directory Server from Oracle Directory Services Manager
Logging in to the Directory Server from Oracle Directory Services Manager
Logging in to the Directory Server from Oracle Directory Services Manager Using SSL
Managing Oracle Directory Services Manager's Key Store
Understanding Oracle Directory Services Manager's Key Store
Retrieving Oracle Directory Services Manager's Java Key Store Password
Listing the Contents of the Trusted Certificate
Deleting the Trusted Certificate
Configuring Oracle HTTP Server to Support Oracle Directory Services Manager in an Oracle WebLogic Server Cluster
Getting Started With Fusion Middleware Control
Invoking Fusion Middleware Control to Manage Oracle Virtual Directory
Starting the Oracle Virtual Directory Server Using Fusion Middleware Control
Stopping the Oracle Virtual Directory Server Using Fusion Middleware Control
Restarting the Oracle Virtual Directory Server Using Fusion Middleware Control
Monitoring Oracle Virtual Directory Using Fusion Middleware Control Metrics
Getting Started with WLST for Oracle Virtual Directory
LDAP Tools Usage
9
Configuring and Managing the Oracle Virtual Directory Server
Configuring Oracle Virtual Directory Server Properties Using Fusion Middleware Control
Configuring Oracle Virtual Directory Server Settings Using WLST
Controlling Orphan Connections Caused by Remote Client or Server Failure
Managing Oracle Virtual Directory Libraries Using Oracle Directory Services Manager
Viewing Oracle Virtual Directory Server Libraries
Loading Libraries into the Oracle Virtual Directory Server
Copying Configuration Files Between Oracle Virtual Directory Servers Using syncovdconfig
Options
Examples
10
Managing Oracle Virtual Directory Server Processes
What is Oracle Process Manager and Notification Server?
Understanding the Default Oracle Virtual Directory Image
Creating an Oracle Virtual Directory Component Using OPMNCTL
Registering an Oracle Instance Using OPMNCTL
Unregistering an Oracle Instance Using OPMNCTL
Updating the Component Registration of an Oracle Instance Using OPMNCTL
Deleting an Oracle Virtual Directory Component Using OPMNCTL
Viewing Active Server Instance Information Using OPMNCTL
Starting the Oracle Virtual Directory Server Using OPMNCTL
Stopping the Oracle Virtual Directory Server Using OPMNCTL
Restarting the Oracle Virtual Directory Server Using OPMNCTL
11
Creating and Managing Oracle Virtual Directory Listeners
What is a Listener?
Understanding the Default Oracle Virtual Directory Listeners
Managing Communication Between Oracle Virtual Directory and Fusion Middleware Control
Creating and Managing Listeners Using Fusion Middleware Control
Creating LDAP Listeners
Creating HTTP Listeners
Managing Listeners
Editing Listener Settings
Deleting Listeners
Managing Listeners Using WLST
Updating Listener Settings
Configuring Admin Listener Settings Using WLST
Configuring LDAP Listener Settings Using WLST
Configuring HTTP Listener Settings Using WLST
Deleting Listeners
Securing Listeners with SSL
Configuring SSL for Listeners Using Fusion Middleware Control
Configuring SSL for Listeners Using WLST
Validating the SSL Connection
SSL No-Authentication Mode
SSL Server Auth Mode
SSL Mutual Authentication Mode
12
Creating and Configuring Oracle Virtual Directory Adapters
Creating LDAP Adapters
Configuring LDAP Adapters
Configuring LDAP Adapter General Settings
Configuring Adapter Routing
Configuring Adapter Plug-ins and Mappings
Managing Certificate Authorities for LDAP Adapters Secured by SSL
Configuring a Mutual Authentication SSL Connection Between Oracle Virtual Directory and Oracle Internet Directory
Configuring a No-Authentication SSL Connection Between Oracle Virtual Directory and a Proxy LDAP Directory
Creating Database Adapters
Creating Database Adapters for Oracle RAC Database
Creating Database Adapters for Oracle TimesTen In-Memory Database
Configuring Database Adapters
Configuring Database Adapter General Settings
Configuring Adapter Routing
Configuring Adapter Plug-ins and Mappings
Creating Local Store Adapters
Configuring Local Store Adapters
Configuring Local Store Adapter General Settings
Configuring Adapter Routing
Configuring Adapter Plug-ins and Mappings
Creating Join View Adapters
Configuring Join View Adapters
Configuring Join View Adapter General Settings and Join Rules
Configuring Adapter Routing
Configuring Adapter Plug-ins and Mappings
Configuring a Shadow Join View Adapter for Oracle Internet Directory
13
Managing Oracle Virtual Directory Plug-ins
Managing Adapter Plug-ins
Creating Adapter Plug-Ins
Editing Adapter Plug-Ins
Deleting Adapter Plug-Ins
Managing Global Server Plug-ins
Creating Global Server Plug-Ins
Viewing Deployed Global Server Plug-ins
Editing Global Server Plug-Ins
Deleting Global Server Plug-Ins
14
Managing Oracle Virtual Directory Mappings
Constructing Mappings Using Mapping Templates
Viewing Deployed Mappings
Creating and Activating Server Mappings
Viewing Activated Server Mappings
Applying Mappings to Adapters
15
Managing Oracle Virtual Directory Entries and Schema
Managing Oracle Virtual Directory Entries Using Data Browsers
Understanding Oracle Virtual Directory Data Browsers
Managing Oracle Virtual Directory Entries Using the Client View Data Browser
Searching the Virtual Directory Tree
Viewing Oracle Virtual Directory Entries
Importing an LDIF FIle
Exporting an LDIF File
Searching and Viewing Oracle Virtual Directory Source Entries Using the Adapter Browser
Searching Oracle Virtual Directory Source Entries
Viewing Oracle Virtual Directory Source Entries
Managing Oracle Virtual Directory Schema Using Oracle Directory Services Manager
Managing Oracle Virtual Directory Schema Attributes
Creating New Schema Attributes
Creating "Like" Schema Attributes
Modifying Schema Attributes
Deleting Schema Attributes
Managing Oracle Virtual Directory Schema Object Classes
Creating New Schema Object Classes
Creating "Like" Schema Object Classes
Modifying Schema Object Classes
Deleting Schema Object Classes
16
Configuring Oracle Virtual Directory Access Control
Creating Access Control Lists Using Oracle Directory Services Manager
Managing Access Control Lists Using Oracle Directory Services Manager
Updating Access Control Lists
Deleting Access Control Lists Entries
17
Managing Oracle Virtual Directory Logging and Auditing
Managing Oracle Virtual Directory Logging
Managing Oracle Virtual Directory Logging Using Oracle Enterprise Manager
Managing Oracle Virtual Directory Logging Using WLST
Managing Granular Logging
Managing Oracle Virtual Directory Auditing
Managing Oracle Virtual Directory Auditing Using Fusion Middleware Control
Managing Oracle Virtual Directory Auditing Using WLST
Part III Advanced Administration
18
Customizing Oracle Virtual Directory
Setting Localized Languages for Oracle Directory Services Manager
Creating and Configuring Custom Adapters
Creating Custom Adapters
Configuring Custom Adapters
Configuring Custom Adapter General Settings
Configuring Adapter Routing
Configuring Adapter Plug-ins and Mappings
Developing Custom Java Plug-Ins
Overview
Understanding the Chain System
Plug-In Implementation Points
Configuration, Startup, and Shutdown Plug-In Implementation Points
Availability Plug-In Implementation Point
Operation Plug-In Implementation Point
Creating EntrySets
ExtensibleEntrySet
Custom EntrySet
Understanding Filter Processing
Understanding Classes
Virtual Service Interface
Global Service Interface
Adapter Service Interface
Joiner
Utility Classes
Data Classes
Data Types
Exceptions
19
Configuring Oracle Virtual Directory for Integrated Directory Solutions
Configuring Oracle Virtual Directory for Oracle Access Manager
Modifying Oracle Access Manager Adapter Settings
Integrating with Oracle's Enterprise User Security
Preparing Oracle Virtual Directory for the Enterprise User Security Integration
Integrating Oracle Virtual Directory with External Directories
User Identities in Microsoft Active Directory
User Identities in Microsoft Active Directory and Metadata in Oracle Internet Directory
User Identities in Sun Java System Directory Server
User Identities in Novell eDirectory
User Identities in Oracle Internet Directory
Configuring Access Control Lists for the Enterprise User Security Integration
Configuring Oracle Virtual Directory to Support Multiple Enterprise User Security Domains
Enabling User Account Lockout
Integration Limitations
Integrating with Oracle's Net Services
Overview
Starting the Integration
Integrating for Use with Microsoft Active Directory
Configuring Active Directory for the Integration
Configuring Oracle Virtual Directory for the Integration
Integrating for Use with Sun Java System Directory Server
Configuring Sun Java System Directory Server for the Integration
Configuring Oracle Virtual Directory for the Integration
Integrating for Use with Oracle Internet Directory
20
Oracle Communications Universal User Profile
What is Oracle Communications Universal User Profile?
Example Oracle Communications Universal User Profile Use Cases and Deployment Scenarios
Oracle Communications Universal User Profile Diameter Adapters
Enabling Support for Diameter Adapters
Creating and Configuring Diameter Adapters
Enabling SCTP Transport
Mapping IMS 3GPP Schema to LDAP Schema
Part IV Appendixes
A
Comparing Oracle Virtual Directory 11g Release 1 (11.1.1) and 10g Releases (10.1.4.x)
Default Super User
Process Management
Location of Configuration Files
Location of Plug-In Files
Location of Deployed Mapping Files
Location of Log Files
Location of Local Store Adapter Data Store
Location of Schema Files
Location of Oracle Virtual Directory Server Libraries
Enabling Oracle Virtual Directory Server Debugging
Graphical User Interfaces
Command-Line Tools
Updating Classpaths
Synchronizing the Configuration of Two Oracle Virtual Directory Components
Audit Configurables
Audit Log Location
B
Starting and Stopping the Oracle Stack
Starting the Stack
Stopping the Stack
C
HTTP Listener's Web Gateway Service
Web Gateway Functionality and Features
Demonstration Directory Browser
Web Gateway Architecture
DSML Serverlet
XSLT Serverlet
Handlers
DSML and XSLT LDAP Query Parameters
Web Gateway Commands
Binary Attribute Retrieval Commands
Form-Based Searching Commands
Form-Based Entry Manipulation Commands
HTTP POST
HTTP GET
Security Contexts
Requirements for .htaccess Files
Directives for .htaccess Files
Resource Restrictions
Example Security Context Files
Using XSL Stylesheet Templates
Using XSLT Serverlet Queries to Create Dynamic Groups
Support for XSL Document() and Import/Include Commands
Passing Parameters to XSL Stylesheets
Example XSL
D
Troubleshooting Oracle Virtual Directory
Problems and Solutions
Cannot Invoke Oracle Directory Services Manager
Cannot Invoke Oracle Directory Services Manager from Fusion Middleware Control
Cursor Problems When Accessing Oracle Directory Services Manager in Accessibility Mode Using Internet Explorer 7
Oracle Directory Services Manager Failover Using Oracle HTTP Server is Not Transparent
Oracle Directory Services Manager Loses Connection to Oracle Virtual Directory-Oracle RAC Database Configuration
Error Returned After Querying Oracle Virtual Directory Configured with LDAP Adapters
Error Returned After Querying Oracle Virtual Directory Configured with Database Adapters
Diagnosing Oracle Virtual Directory Problems
Increasing the Log Level to DEBUG
Examining the Exceptions Logged to the Diagnostic Log
Using the Dump Transactions Plug-In to Gather Information About Data Transformation Errors
Monitoring the Oracle Virtual Directory Server Using Fusion Middleware Control Metrics
Need More Help?
Scripting on this page enhances content navigation, but does not change the content in any way.