Skip Headers
Oracle® Student Learning Implementation Guide
Release 3.1.3
Part Number E21072-04
Go to Documentation Home
Home		 Go to Book List
Book List		 Go to Table of Contents
Contents		 Go to Feedback page
Contact Us
Go to previous page
Previous
PDF · Mobi · ePub

E Oracle Internet Directory (OID) Setup for Default Content Integration

This appendix provides the Oracle Internet Directory (OID) setup that are needed to configure the UCM accounts for default content integration.

E.1 Prerequisites

Configure OID for LT before configuring OID for DCI.

E.2 Configuring OID

Set the environment variables listed below in the server where OID is installed.

Table E-1 Environment variables

Variables Description

<ORACLE_HOME_DIR>

IDM directory in the middleware installation.

For example: =/home/oracle/Middleware/Oracle_IDM1

<ORACLE_INSTANCE_DIR>

AS directory in the middleware installation.

For example: =/home/oracle/Middleware/ asinst_1

<IDM_SID>

The SID for the OID DB.

For example: idm

<JAVA_HOME_DIR>

Java isntallation directory.

For example: =/home/oracle/app/jdk1.6.0_17/

<DOMAIN_HOME_DIR>

Middleware domain directory.

For example: =/home/oracle/Middleware/user_projects/domains/IDMDomain

 

unset ORACLE_HOME
export ORACLE_HOME=<ORACLE_HOME_DIR> 
export ORACLE_INSTANCE=<ORACLE_INSTANCE_DIR>
export ORACLE_SID=<IDM_SID>
export JAVA_HOME=<JAVA_HOME_DIR>
export DOMAIN_HOME=<DOMAIN_HOME_DIR>
export PATH=$ORACLE_INSTANCE/bin:$ORACLE_HOME/bin:$ORACLE_HOME/ldap/bin:$JAVA_HOME/bin:$PATH

E.2.1 Command to execute Idiff files

Table E-2 List of variables

Variables Description

<OID_hostname>

Hostname for the OID server.

<OID_port>

Port for the OID directory server.

<OID_admin_username>

OID Admin username.

<OID_admin_password>

OID admin password.

<ldiff_filename>

Ldiff file name.

 

ldapadd -h <OID_hostname> -p <OID_port> -D "<OID_admin_username>"  -w <OID_admin_password> -f <ldiff_filename>

Note:

The ldiff files needed to create the OID data are available in <OSL_INSTALL_DIR>/LearningTool/ContentIntegration/scripts/oid folder.

E.2.2 Create Tree

The WebLogic OID provider for UCM must be configured with the Group Base DN. This group DN should include both OSL groups (For example: cn=osl,cn=groups,dc=sg,dc=oracle,dc=com) and DCI accounts (For example: cn=dci,cn=groups,dc=sg,dc=oracle,dc=com).

Create a new tree in OID to hold the accounts. Execute the following command:

ldapadd -h <OID_hostname> -p <OID_port> -D "<OID_admin_username>"  -w <OID_admin_password> -f  create_dci_group_tree.ldiff

E.2.3 Create Groups

Create a list of Groups that would be translated to UCM accounts. Execute the following command:

ldapadd -h <OID_hostname> -p <OID_port> -D "<OID_admin_username>"  -w <OID_admin_password> -f  create_dci_groups.ldiff

E.2.4 Create School Groups

Create a list of Groups for each School that would be translated to UCM accounts. Execute the following command:

ldapadd -h <OID_hostname> -p <OID_port> -D "<OID_admin_username>"  -w <OID_admin_password> -f  create_dci_groups_for_school.ldiff

Note:

A list of accounts needed for each school is listed in the ldiff file. Add the group for each of the school ids that are available in OSL. The list of schools can be retreived from OSL LT database using the sql statement:

select id, name from osl_parties where par_type='ORGANIZATION';

E.2.5 Assign Members to Groups

Assign the users that are assigned to different groups like DeptAdminGroup, SchoolAdminGroup, TeacherGroup, StudentGroup, and ParentGroup to the corresponding accounts. The mapping of different accounts to OSL Groups is listed below:

Table E-3 Mapping of different accounts to OSL Group

OSL Role UCM Accounts

DeptAdminGroup

@Endorsed(RWDA)

@Unendorsed(RWDA)

@Public(RWDA)

SchAdminGroup

@Endorsed/School/SchoolId(RWDA) @Unendorsed/School/SchoolId(RWDA)

TeacherGroup

@Endorsed/Department(R) @Endorsed/School/SchoolId(R) @Unendorsed/School/SchoolId(RW) @Public(RWD)

ParentGroup

@Endorsed/Department(R) @Endorsed/School/SchoolId(R) @Unendorsed/School/SchoolId(R) @Public(R)

StudentGroup

@Endorsed/Department(R) @Endorsed/School/SchoolId(R) @Unendorsed/School/SchoolId(R) @Public(R)

Only users that belong to the school must be assigned to school accounts.

  • Retrieve schools in OSL by running the following SQL script:

    select id, name from osl_parties where par_type='ORGANIZATION';

    In the above SQL script, ID is the <School_Id>.

  • Retrieve teachers belonging to a school by running the following SQL script:

    select id, party_identifier from osl_parties where id in (select src_par_id from osl_party_relationships where dest_par_id=<School_Id> and relationship_type='TEACHER_OF') order by id asc;

  • Retrieve students belonging to a school by running the following SQL script:

    select id, party_identifier from osl_parties where id in (select src_par_id from osl_party_relationships where dest_par_id=<School_Id> and relationship_type='STUDENT_OF') order by id asc;

  • Retrieve parents belonging to a school:

    select id, party_identifier from osl_parties where id in (select src_par_id from osl_party_relationships where dest_par_id in (select src_par_id from osl_party_relationships where dest_par_id=<School_Id> and relationship_type='STUDENT_OF') and relationship_type='PARENT_OF' ) order by id asc;

Note:

SchoolId listed in the UCM accounts are the SchoolId that are listed in OSL LT database.

Modify and execute the following commands to assign members to groups:

ldapadd -h <OID_hostname> -p <OID_port> -D "<OID_admin_username>" -w <OID_admin_
password> -f assign_deptadmin_group_member.ldiff

ldapadd -h <OID_hostname> -p <OID_port> -D "<OID_admin_username>" -w <OID_admin_
password> -f assign_schooladmin_group_member.ldiff

ldapadd -h <OID_hostname> -p <OID_port> -D "<OID_admin_username>" -w <OID_admin_
password> -f assign_teacher_group_member.ldiff

ldapadd -h <OID_hostname> -p <OID_port> -D "<OID_admin_username>" -w <OID_admin_
password> -f assign_parent_group_member.ldiff

ldapadd -h <OID_hostname> -p <OID_port> -D "<OID_admin_username>" -w <OID_admin_
password> -f assign_student_group_member.ldiff

E.2.6 Configure OID Provider for UCM with Group DN

Details on adding an OID provider for UCM is listed in the UCM setup found in section 6.2.3 Configuring OID as Security Provider for Content Server 11g of the Oracle Student Learning Installation and Deployment Guide. This section is limited to the setup of Groups in OID provider.

  1. Log in to WebLogic console for the UCM domain.

  2. Click Security Realms.

  3. Click the Providers tab.

  4. Click OID Provider. Enter the value of the Group base DN. For example, (cn=groups,dc=sg,dc=oracle,dc=com). Take note that the groups for OSL and DCI exists in a subtree.

Go to previous page
Previous
Go to Documentation Home
Home		 Go to Book List
Book List		 Go to Table of Contents
Contents		 Go to Feedback page
Contact Us