Skip Navigation Links | |
Exit Print View | |
Oracle Fusion Middleware Installation Guide for Oracle Unified Directory 11g Release 1 (11.1.1) |
1. Before You Install Oracle Unified Directory 11g Release 1 (11.1.1)
3. Setting Up the Directory Server
4. Setting Up the Proxy Server
Setting Up the Proxy Server by Using the GUI
Presentation of the GUI Setup Wizard
To Configure Simple Load Balancing
Installing the Proxy by Using the CLI
To Install the Proxy by Using the CLI
Duplicating a Proxy Installation
To Duplicate a Proxy Installation Using the GUI
To Duplicate Your Proxy Installation Using the Installation Log File
5. Setting Up the Replication Gateway
6. Configuring the JVM, Java Options, and Database Cache
The following topics present a step by step installation using the oud-proxy-setup graphical interface, including configuration examples for simple deployments.
Before you run the command, make sure that you have determined the best deployment architecture, using the deployment scenarios that are described in Chapter 7, Example Deployments Using the Proxy Server, in Oracle Fusion Middleware Deployment Planning Guide for Oracle Unified Directory.
The GUI setup wizard is organized as follows:
The left hand pane lists the steps of the setup process. The deployment sub-steps change, according to the type of deployment that you select.
The arrow in the left hand pane indicates the current step.
The main area on the right is the action pane, where you define your deployment.
At the bottom of the window you have the option to go back and forth (or quit) to modify and complete your installation.
The remaining tasks in this section walk you through the various types of proxy deployments that can be set up.
(UNIX, Linux) $ cd OUD-base-location/ORACLE_HOME (Windows) C:\> cd OUD-base-location\ORACLE_HOME
(UNIX, Linux) $ oud-proxy-setup (Windows) C:\> oud-proxy-setup.bat
The utility launches the graphical installer and creates the Oracle Unified Directory proxy instance in OUD-base-location/instance-dir.
The default instance directory name is asinst_1, with subsequent instances on the same server named asinst_2, asinst_3, and so on. To specify a different instance name, set the INSTANCE_NAME environment variable before you run the setup, for example:
$ export INSTANCE_NAME=my-oud-proxy-instance
The default is the local host name.
The default port that is proposed is the first available port that ends with 389. On UNIX platforms, if you run the installer as a non-root user, the default is 1389, if available.
Complete the following information:
The default secure port that is proposed is the first available port that ends with 636. On UNIX platforms, if you run the installer as a non-root user, the default is 1636, if available.
For production servers, select Use an Existing Certificate, and then select the Keystore Type. Enter the Keystore Path, and Keystore PIN if necessary.
The default administration port is 4444. For more information, see Managing Administration Traffic to the Server in Oracle Fusion Middleware Administration Guide for Oracle Unified Directory.
Note - If you select Configure later, only the server settings that you specified in the previous step are configured. You must then use the dsconfig command, or the ODSM interface, to configure your deployment.
Click Next to continue.
When you have entered the details of one directory server in a replicated topology, the setup wizard displays all other replicated servers in that topology.
The setup wizard displays all the Oracle Directory Server Enterprise Edition server instances that are registered in the DSCC registry.
Note - The security settings you set here will determine the security between the Oracle Unified Directory proxy and remote LDAP servers. For more information about setting security options, see Chapter 5, Configuring Security Between the Proxy and the Data Source, in Oracle Fusion Middleware Administration Guide for Oracle Unified Directory.
For information about the various load balancing algorithms, see Load Balancing Using the Proxy in Oracle Fusion Middleware Deployment Planning Guide for Oracle Unified Directory.
When you have completed the installation, the properties can be modified. For more information, see Modifying Load Balancing Properties in Oracle Fusion Middleware Administration Guide for Oracle Unified Directory.
For example, if you leave the default value of 1, then all servers will receive the same number of requests.
The server with a value of 1 is the highest priority server. The other servers are used only if there is a failure on the main server.
Requests are sent to the server with the highest priority (1) until it reaches the threshold indicated. The saturation threshold is the rate at which the server is considered saturated, or full. Typically this limit should be set lower than 100%.
The active server is selected based on the saturation index, which is calculated automatically.
For example, dc=example,dc=com
If you need to make any modifications, use the Previous button.
These commands are saved in a log file, in the logs folder. You can use these commands to run additional installations with similar deployment options later.
Note - When the installation is complete, you can use the dsconfig command to modify the installation. For more information, see Managing the Server Configuration With dsconfig in Oracle Fusion Middleware Administration Guide for Oracle Unified Directory.
(UNIX, Linux) $ cd OUD-base-location/ORACLE_HOME (Windows) C:\> cd OUD-base-location\ORACLE_HOME
(UNIX, Linux) $ oud-proxy-setup (Windows) C:\> oud-proxy-setup.bat
The utility launches the graphical installer and creates the Oracle Unified Directory proxy instance in OUD-base-location/instance-dir.
The default instance directory name is asinst_1, with subsequent instances on the same server named asinst_2, asinst_3, and so on. To specify a different instance name, set the INSTANCE_NAME environment variable before you run the setup, for example:
$ export INSTANCE_NAME=my-oud-proxy-instance
The default is the local host name.
The default port that is proposed is the first available port that ends with 389. On UNIX platforms, if you run the installer as a non-root user, the default is 1389, if available.
Complete the following information:
The default secure port that is proposed is the first available port that ends with 636. On UNIX platforms, if you run the installer as a non-root user, the default is 1636, if available.
For production servers, click Use an Existing Certificate, and then click the Keystore Type. Enter the Keystore Path, and Keystore PIN if necessary.
The default administration port is 4444. For more information, see Managing Administration Traffic to the Server in Oracle Fusion Middleware Administration Guide for Oracle Unified Directory.
Note - If you select Configure later, only the server settings that you specified in the previous step are configured. You must then use the dsconfig command or the ODSM interface to configure your deployment.
For the example distribution scenario, select two partitions.
Click Next.
For information about the various partitioning algorithms, see Data Distribution Using the Proxy in Oracle Fusion Middleware Deployment Planning Guide for Oracle Unified Directory.
For example,dc=example,dc=com.
For example, ou=people. The distribution base DN is the level after which the distribution requests apply.
For example,uid.
If you use the Set Default button, the installation wizard sets defaults that might not correspond to your deployment. This feature can, however, be useful for testing purposes.
For example, if you set maximum entries to 1000, only 1000 Add requests will be sent to the LDAP server associated with that partition. If you set maximum entries to 1000 for partition 1 and 2000 for partition 2, the proxy will send twice the number of requests to partition 2.
Note - If you select the capacity algorithm, you must create a global index, as described in the next step.
For example, cn=[a].* means that requests with a uid that starts with a will be sent to partition 1. For more information about DN pattern strings, see DN Pattern String Syntax in Oracle Fusion Middleware Administration Guide for Oracle Unified Directory.
For example, for partition 1, From=A, To=K. This means that uids with values between A and K will be sent to partition 1.
For example, for partition 1, From=0, To=1000. This means that uids between 0 and 1000 will be sent to partition 1.
Note - The upper boundary is exclusive. That is, if you set the upper boundary to 1000, only entries up to 999 will be distributed to that partition.
If you leave one of the boundaries blank, this will be considered as unlimited. In other words, if you set the lower boundary to 1000 and the upper boundary to blank, the partition will include everything after 1000.
Click Next.
Note - If you have selected a capacity algorithm, this option will already be selected because Global indexes are mandatory for the capacity algorithm.
Note - All available attributes are listed. Choose only those attributes that contain unique values.
If necessary, use the split-ldif command to divide LDIF files into files containing the expected data for global indexes. For more information, see To Create a Global Index Catalog Containing Global Indexes in Oracle Fusion Middleware Administration Guide for Oracle Unified Directory.
The installation wizard creates a global index catalog, named gi-catalog by default, and populates the global index catalog with global indexes of the selected attributes. All global indexes are associated with the same global index catalog (gi-catalog) . The installation wizard also creates a global index replication administrator with the same password as the directory manager.
For information about configuring and using global indexes, see Configuring Global Indexes By Using the Command Line in Oracle Fusion Middleware Administration Guide for Oracle Unified Directory.
Note - If you add two servers for one partition, you must configure load balancing between these servers. This use case is explained in the example To Configure Distribution with Load Balancing.
When you have entered the details of one directory server in a replicated topology, the setup wizard displays all other replicated servers in that topology.
The setup wizard displays all the Oracle Directory Server Enterprise Edition server instances that are registered in the DSCC registry.
Note - The security settings you set here will determine the security between the Oracle Unified Directory proxy and remote LDAP servers. For more information about setting security options, see Chapter 5, Configuring Security Between the Proxy and the Data Source, in Oracle Fusion Middleware Administration Guide for Oracle Unified Directory.
If you need to make any modifications, use the Previous button.
These commands are saved in a log file, in the logs folder. You can use these commands to run additional installations with similar deployment options later.
Note - When the installation is complete, you can use the dsconfig command to modify the installation. For more information, see Managing the Server Configuration With dsconfig in Oracle Fusion Middleware Administration Guide for Oracle Unified Directory.
(UNIX, Linux) $ cd OUD-base-location/ORACLE_HOME (Windows) C:\> cd OUD-base-location\ORACLE_HOME
(UNIX, Linux) $ oud-proxy-setup (Windows) C:\> oud-proxy-setup.bat
The utility launches the graphical installer and creates the Oracle Unified Directory proxy instance in OUD-base-location/instance-dir.
The default instance directory name is asinst_1, with subsequent instances on the same server named asinst_2, asinst_3, and so on. To specify a different instance name, set the INSTANCE_NAME environment variable before you run the setup, for example:
$ export INSTANCE_NAME=my-oud-proxy-instance
The default is the local host name.
The default port that is proposed is the first available port that ends with 389. On UNIX platforms, if you run the installer as a non-root user, the default is 1389, if available.
Complete the following information:
The default secure port that is proposed is the first available port that ends with 636. On UNIX platforms, if you run the installer as a non-root user, the default is 1636, if available.
For production servers, click Use an Existing Certificate, and then select the Keystore Type. Enter the Keystore Path, and Keystore PIN if necessary.
The default administration port is 4444. For more information, see Managing Administration Traffic to the Server in Oracle Fusion Middleware Administration Guide for Oracle Unified Directory.
Note - If you select Configure later, only the server settings that you specified in the previous step are configured. You must then use the dsconfig command or the ODSM interface to configure your deployment.
For the example distribution scenario, select two partitions.
Click Next.
For information about the various partitioning algorithms, see Data Distribution Using the Proxy in Oracle Fusion Middleware Deployment Planning Guide for Oracle Unified Directory.
For example,dc=example,dc=com.
For example, ou=people. The distribution base DN is the level after which the distribution requests apply.
For example,uid.
If you use the Set Default button, the installation wizard sets defaults, that might not correspond to your deployment. This feature can, however, be useful for testing purposes.
For example, if you set maximum entries to 1000, only 1000 Add requests will be sent to the LDAP server associated with that partition. If you set maximum entries to 1000 for partition 1 and 2000 for partition 2, the proxy will send twice the number of requests to partition 2.
Note - If you select the capacity algorithm, you must create a global index, as described in the next step.
For example, cn=[a].* means that requests with a uid that starts with a will be sent to partition 1. For more information about DN pattern strings, see DN Pattern String Syntax in Oracle Fusion Middleware Administration Guide for Oracle Unified Directory.
For example, for partition 1, From=A, To=K. This means that uids with values between A and K will be sent to partition 1.
For example, for partition 1, From=0, To=1000. This means that uids between 0 and 1000 will be sent to partition 1.
Note - The upper boundary is exclusive. That is, if you set the upper boundary to 1000, only entries up to 999 will be distributed to that partition.
If you leave one of the boundaries blank, this will be considered as unlimited. In other words, if you set the lower boundary to 1000 and the upper boundary to blank, the partition will include everything after 1000.
Click Next.
Note - If you have selected a capacity algorithm, this option will already be selected because Global indexes are mandatory for the capacity algorithm.
Note - All available attributes are listed. Choose only those attributes that contain unique values.
If necessary, use the split-ldif command to divide LDIF files into files containing the expected data for global indexes. For more information, see To Create a Global Index Catalog Containing Global Indexes in Oracle Fusion Middleware Administration Guide for Oracle Unified Directory.
The installation wizard creates a global index catalog, named gi-catalog by default, and populates the global index catalog with global indexes of the selected attributes. All global indexes are associated with the same global index catalog (gi-catalog) . The installation wizard also creates a global index replication administrator with the same password as the directory manager.
For information about configuring and using global indexes, see Configuring Global Indexes By Using the Command Line in Oracle Fusion Middleware Administration Guide for Oracle Unified Directory.
Note - You must select at least two remote LDAP servers per partition to deploy distribution with load balancing.
When you have entered the details of one directory server in a replicated topology, the setup wizard displays all other replicated servers in that topology.
The setup wizard displays all the Oracle Directory Server Enterprise Edition server instances that are registered in the DSCC registry.
Note - The security settings you set here will determine the security between the Oracle Unified Directory proxy and remote LDAP servers. For more information about setting security options, see Chapter 5, Configuring Security Between the Proxy and the Data Source, in Oracle Fusion Middleware Administration Guide for Oracle Unified Directory.
For example, select Proportional with default values.
When you have completed the installation, the properties can be modified. For more information, see Modifying Load Balancing Properties in Oracle Fusion Middleware Administration Guide for Oracle Unified Directory.
For example, if you leave the default value of 1, all servers will receive the same number of requests.
The server with a value of 1 will be the main server. The other servers will only be used if there is a failure on the server with a priority of 1.
Requests are sent to the server with the highest priority (1) until it reaches the threshold indicated. The saturation threshold is the rate at which the server is considered saturated, or full. Typically this limit should be set lower than 100%.
The active server is selected based on the saturation index, which is calculated automatically.
For more information, see Configuring the Java Runtime Settings During Installation.
If you need to make any modifications, use the Previous button.
These commands are saved in a log file, in the logs folder. You can use these commands to run additional installations with similar deployment options later.
Note - When the installation is complete, you can use the dsconfig command to modify the installation. For more information, see Managing the Server Configuration With dsconfig in Oracle Fusion Middleware Administration Guide for Oracle Unified Directory.