Skip Navigation Links | |
Exit Print View | |
Oracle Fusion Middleware Administration Guide for Oracle Unified Directory 11g Release 1 (11.1.1) |
1. Starting and Stopping the Server
2. Configuring the Server Instance
3. Configuring the Proxy Components
4. Configuring Security Between Clients and Servers
5. Configuring Security Between the Proxy and the Data Source
6. Managing Oracle Unified Directory With Oracle Directory Services Manager
Configuring Data Replication With dsreplication
To Enable Replication Between Two Servers
To Initialize a Replicated Server
To Initialize an Entire Topology
To Obtain the Status of a Replicated Topology
To Merge Two Existing Replicated Topologies
To Disable Replication For a Specific Replication Domain
Configuring Large Replication Topologies
To Configure a Dedicated Replication Server
Modifying the Replication Configuration With dsconfig
Retrieving the Replication Domain Name
Changing the Replication Purge Delay
How Replication Changes Are Purged
To Change the Replication Purge Delay
Changing the Initialization Window Size
To Change the Initialization Window Size
Changing the Heartbeat Interval
To Change the Heartbeat Interval
To Change the Isolation Policy
Configuring Encrypted Replication
To Configure Encrypted Replication
Configuring Replication Groups
To Configure a Replication Group
Configuring Assured Replication
To Configure Assured Replication in Safe Data Mode
To Configure Assured Replication in Safe Read Mode
Configuring Fractional Replication
To Configure Exclusive Fractional Replication
To Configure Inclusive Fractional Replication
To Configure and Initialize a Fractional Domain
Configuring Replication Status
To Configure the Degraded Status Threshold
Configuring the Replication Server Weight
Initializing a Replicated Server With Data
Initializing a Single Replicated Server
Initializing a New Replicated Topology
Adding a Directory Server to an Existing Replicated Topology
Changing the Data Set in an Existing Replicated Topology
To Change the Data Set With import-ldif or Binary Copy
Appending Data in an Existing Replicated Topology
Enabling the External Change Log in Oracle Unified Directory
How a Client Application Uses the External Change Log in Cookie Mode
Format of External Change Log Entries
To Specify the Attributes to be Included in the External Change Log
Initializing Client Applications to Use the External Change Log
To Initialize a Client Application to Use the External Change Log
Reinitializing a Client Application When a Domain is Added
Reinitializing a Client Application When a Domain is Removed or Disabled
Controlling Access to the External Change Log
Purging the External Change Log
To Disable the External Change Log for a Domain
Configuring Schema Replication
To Specify That Schema Should Not Be Replicated
Replicating to a Read-Only Server
To Configure a Replica as Read-Only
Detecting and Resolving Replication Inconsistencies
Types of Replication Inconsistencies
Purging Historical Replication Data
Deployment Scenarios for Isolated Replicas
Using Isolated Replicas in a DMZ
Using Isolated Replicas for Testing
Replicating Between Oracle Directory Server Enterprise Edition and Oracle Unified Directory
To Migrate the Oracle Directory Server Enterprise Edition Schema and Configuration
To Initialize the Oracle Unified Directory with Oracle Directory Server Enterprise Edition Data
10. Managing Users and Groups With dsconfig
11. Managing Password Policies
Oracle Unified Directory 11g Release 1 (11.1.1) provides a mechanism to replicate data between Oracle Directory Server Enterprise Edition and Oracle Unified Directory. The main purpose of this replication gateway is to enable migration from Oracle Directory Server Enterprise Edition to Oracle Unified Directory.
For a comprehensive overview of the replication gateway and its use in a topology that includes both Oracle Directory Server Enterprise Edition and Oracle Unified Directory servers, see Chapter 4, Overview of the Replication Gateway, in Oracle Fusion Middleware Deployment Planning Guide for Oracle Unified Directory.
Setting up replication between these two disparate topologies involves three steps:
Migrating the Oracle Directory Server Enterprise Edition schema and configuration to the Oracle Unified Directory server.
Initializing the Oracle Unified Directory server with the data from the Oracle Directory Server Enterprise Edition server.
Configuring replication between the Oracle Directory Server Enterprise Edition server and the Oracle Unified Directory server.
The following procedures describe each step. These procedure assume that you have the following:
An installed and running Oracle Directory Server Enterprise Edition server.
The Oracle Unified Directory replication gateway supports the DS6–mode password policy only. If your Oracle Directory Server Enterprise Edition instance is using a DS5–mode password policy, you must upgrade it.
An installed and running Oracle Unified Directory directory server.
The Oracle Unified Directory server must be configured without any suffixes.
This procedure describes various options of the ds2oud command. You can run the ds2oud command completely interactively by just typing ds2oud on the command line. In interactive mode, the command prompts you for the required responses. For more information about the ds2oud command, see ds2oud in Oracle Fusion Middleware Command-Line Usage Guide for Oracle Unified Directory.
This command assesses the Oracle Directory Server Enterprise Edition server instance and informs you whether any of the server configuration must be migrated to the Oracle Unified Directory server.
$ ds2oud --diagnose -D "cn=directory manager" -j pwdfile -h host1.example.com -p 1389
To migrate the schema and the configuration parameters:
$ ds2oud --migrateAll \ -D "cn=directory manager" -j pwdfile -h host1.example.com -p 1389 \ --oudBindDN "cn=directory manager" --oudBindPasswordFile pwdfile \ --oudHostname localhost --oudAdminPort 4444 --oudPort 1389
You are prompted for additional information relating to the Oracle Unified Directory configuration. This command creates a compatible configuration on the Oracle Unified Directory directory server.
$ dsadm export -f opends-export dsee-instance-path baseDN exportedLDIFPath
where exportedLDIFPath is the path of the resulting LDIF file that contains the replicated data.
$ dsreplication pre-external-initialization -h localhost -p 4444 --adminUID admin \ --adminPassword password -baseDN dc=example,dc=com -X -n --noPropertiesFile
$ import-ldif -h localhost -p 4444 \ -D "cn=admin,cn=Administrators,cn=admin data" -w password \ --includeBranch dc=example,dc=com --ldifFile exportedLDIFPath \ --clearBackend --trustAll --noPropertiesFile
$ dsreplication post-external-initialization -h localhost -p 4444 --adminUID admin \ --adminPassword password --baseDN dc=example,dc=com -X -n --noPropertiesFile