7 Configuring Oracle Internet Directory

This chapter explains how to configure Oracle Internet Directory (OID).

This chapter discusses the following topics:

• OID with ODSM and Fusion Middleware Control in a New WebLogic Domain

• OID with ODIP, ODSM, and Fusion Middleware Control in a New WebLogic Domain

• OID and OVD with ODSM in a New WebLogic Domain

• Only OID in an Existing WebLogic Domain

• Only OID Without a WebLogic Domain

• Verifying OID Installation

• Getting Started with OID After Installation

Table 7-1 Oracle Internet Directory Configuration Scenarios

Scenario	Description
OID with ODSM and Fusion Middleware Control in a New WebLogic Domain	The configuration described in this topic is appropriate for environments that have all of the following conditions: You want to manage Oracle Internet Directory using Fusion Middleware Control. You want Oracle Internet Directory to be in a WebLogic administration domain. There is no WebLogic Administration Server managing other 11g Release 1 (11.1.1) Oracle Directory Services components. You want to install Oracle Internet Directory and a WebLogic Administration Server colocated on the same host.
OID with ODIP, ODSM, and Fusion Middleware Control in a New WebLogic Domain	The configuration described in this topic is appropriate for environments that have both of the following conditions: You want to install Oracle Internet Directory and Oracle Directory Integration Platform colocated on the same host. There is no WebLogic Administration Server managing other 11g Release 1 (11.1.1) Oracle Directory Services components.
OID and OVD with ODSM in a New WebLogic Domain	The configuration described in this topic is appropriate for environments that have the following conditions: A new WebLogic Administration Server is necessary to manage Oracle Internet Directory and Oracle Virtual Directory components. You want to install Oracle Internet Directory and Oracle Virtual Directory together in the same WebLogic domain, which can be extended at a later time to add new Oracle Identity Management components.
Only OID in an Existing WebLogic Domain	The configuration described in this topic is appropriate for environments that have both of the following conditions: A WebLogic Administration Server is available to manage 11g Release 1 (11.1.1) Oracle Directory Services components and you want Oracle Internet Directory to join that domain. You want to install Oracle Internet Directory separately from the WebLogic Administration Server.
Only OID Without a WebLogic Domain	The configuration described in this topic is appropriate for environments that have both of the following conditions: You do not want to include Oracle Internet Directory in a WebLogic administration domain for management purposes. You do not want to manage Oracle Internet Directory using Fusion Middleware Control.

7.1 OID with ODSM and Fusion Middleware Control in a New WebLogic Domain

This topic describes how to configure Oracle Internet Directory (OID) with Oracle Directory Services Manager (ODSM) and Fusion Middleware Control in a new WebLogic administration domain. It includes the following sections:

• Appropriate Deployment Environment

• Components Deployed

• Dependencies

• Procedure

7.1.1 Appropriate Deployment Environment

The configuration described in this topic is appropriate for environments that have all of the following conditions:

• You want to manage Oracle Internet Directory using Fusion Middleware Control.

• You want Oracle Internet Directory to be in a WebLogic administration domain.

• There is no WebLogic Administration Server managing other 11g Release 1 (11.1.1) Oracle Directory Services components.

• You want to install Oracle Internet Directory and a WebLogic Administration Server colocated on the same host.

7.1.2 Components Deployed

Performing the configuration in this section deploys the following components:

• WebLogic Administration Server

• Oracle Internet Directory

• Oracle Directory Services Manager

• Fusion Middleware Control

7.1.3 Dependencies

The configuration in this section depends on the following:

• Oracle WebLogic Server

• Oracle Database

• If you want to use an existing schema, Identity Management - Oracle Internet Directory schema existing in the Oracle Database.

7.1.4 Procedure

Perform the following steps to configure Oracle Internet Directory with Oracle Directory Services Manager and Fusion Middleware Control in a new domain:

Note:

If you selected Install and Configure option in the Select Installation Type screen while installing Oracle Identity Management 11g Release 1 (11.1.1.6.0), as described in Installing and Configuring Oracle Identity Management 11g Release 1 (11.1.1.6.0) Software, the Select Domain screen is displayed.

If you selected Install Software - Do Not Configure option in the Select Installation Type screen while installing Oracle Identity Management 11g Release 1 (11.1.1.6.0), as described in Installing and Configuring Oracle Identity Management 11g Release 1 (11.1.1.6.0) Software, you must now start the Oracle Identity Management Configuration Wizard. Run <ORACLE_HOME>/bin/config.sh (on UNIX) or <ORACLE_HOME>\bin\config.bat (on Windows) to start the Oracle Identity Management Configuration Wizard. The Select Domain screen is displayed.

1. On the Select Domain screen, select Create New Domain and enter the following information:

   • Enter the user name for the new domain in the User Name field.

   • Enter the user password for the new domain in the User Password field.

   • Enter the user password again in the Confirm Password field.

   • Enter a name for the new domain in the Domain Name field.

   Click Next. The Specify Installation Location screen appears.

2. Identify the Homes, Instances, and the WebLogic Server directory by referring to Identifying Installation Directories. After you enter information for each field, click Next. The Specify Security Updates screen appears.

3. Choose how you want to be notified about security issues:

   • If you want to be notified about security issues through email, enter your email address in the Email field.

   • If you want to be notified about security issues through My Oracle Support (formerly MetaLink), select the My Oracle Support option and enter your My Oracle Support Password.

   • If you do not want to be notified about security issues, leave all fields empty.

   Click Next. The Configure Components screen appears.

4. Select Oracle Internet Directory. The Oracle Directory Services Manager and Fusion Middleware Control management components are automatically selected for this installation.

   Ensure no other components are selected and click Next. The Configure Ports screen appears.

5. Choose how you want the Installer to configure ports:

   • Select Auto Port Configuration if you want the Installer to configure ports from a predetermined range.

   • Select Specify Ports using Configuration File if you want the Installer to configure ports using the staticports.ini file. You can click View/Edit File to update the settings in the staticports.ini file.

   Click Next. The Specify Schema Database screen appears.

6. Choose whether to use an existing schema or to create a new one using the Installer.

   Note:

   If you want to use an existing schema, it must currently reside in the database to continue with the installation. If it does not currently reside in the database, you must create it now using the Oracle Fusion Middleware Repository Creation Utility or follow the To create a new schema section mentioned below.

   Refer to Creating Database Schema Using the Oracle Fusion Middleware Repository Creation Utility (RCU) for more information.

   To use an existing schema 

   1. Select Use Existing Schema.

   2. Enter the database connection information in the Connect String field. The connection string must be in the form of hostname:port:servicename. For Oracle Real Application Clusters (RAC), the connection string must be in the form of hostname1:port1:instance1^hostname2:port2:instance2@servicename.

   3. Enter the password for the existing ODS schema in the Password field.

   4. Click Next.

      Note:

      If your existing ODS and ODSSM schemas have different passwords, the Specify ODSSM Password screen will appear after you click Next. Enter the password for your existing ODSSM schema and click Next.

      The Create Oracle Internet Directory screen appears.

   5. Continue the installation by going to step 7 now.

   To create a new schema 

   1. Select Create Schema.

   2. Enter the database connection information in the Connect String field. The connection string must be in the form of hostname:port:servicename. For Oracle Real Application Clusters (RAC), the connection string must be in the form of hostname1:port1:instance1^hostname2:port2:instance2@servicename.

   3. Enter the name of the database user in the User Name field. The user you identify must have DBA privileges.

      Note:

      If you are using Oracle Database 11g Release 2 (11.2) or higher version, the database user should be only 'SYS'.

   4. Enter the password for the database user in the Password field.

   5. Click Next. The Enter OID Passwords screen appears.

   6. Create a password for the new ODS schema by entering it in the ODS Schema Password field.

      Enter it again in the Confirm ODS Schema Password field.

   7. Create a password for the new ODSSM schema by entering it in the ODSSM Schema Password field.

      Enter it again in the Confirm ODSSM Schema Password field.

   8. Click Next. The Create Oracle Internet Directory screen appears.

7. Enter the following information for Oracle Internet Directory:

   • Realm: Enter the location for your realm. For example: dc=mycompany,dc=com

   • Administrator Password: Enter the password for the Oracle Internet Directory administrator.

   • Confirm Password: Enter the administrator password again.

   Click Next.

8. The Installation Summary screen appears. Verify the information on this screen. Click Configure to begin the configuration.

9. The Configuration Progress screen appears. Click Next to continue.

10. The Installation Complete screen appears. Click Save to save the configuration information to a file, and then click Finish to exit the installer.

Note:

You may see the following error message in $Instance_home/diagnostics/logs/OID/oid1/** log files after configuring Oracle Internet Directory:

"2010-02-01T07:27:42+00:00] [OID] [NOTIFICATION:16] [] [OIDLDAPD] [host:stadp47] [pid: 26444] [tid: 0] Main:: FATAL * gslsmaiaInitAudCtx * Audit struct initialization failed. Audit error code: 62005"

You can ignore this error message.

7.2 OID with ODIP, ODSM, and Fusion Middleware Control in a New WebLogic Domain

This topic describes how to configure Oracle Internet Directory (OID) with Oracle Directory Integration Platform (ODIP), Oracle Directory Services Manager (ODSM), and Fusion Middleware Control in a new WebLogic administration domain. It includes the following sections:

• Appropriate Deployment Environment

• Components Deployed

• Dependencies

• Procedure

7.2.1 Appropriate Deployment Environment

The configuration described in this topic is appropriate for environments that have both of the following conditions:

• You want to install Oracle Internet Directory and Oracle Directory Integration Platform colocated on the same host.

• There is no WebLogic Administration Server managing other 11g Release 1 (11.1.1) Oracle Directory Services components.

7.2.2 Components Deployed

Performing the configuration in this section deploys the following components:

• WebLogic Administration Server

• Oracle Internet Directory

• WebLogic Managed Server

• Oracle Directory Integration Platform

• Oracle Directory Services Manager

• Fusion Middleware Control

7.2.3 Dependencies

The configuration in this section depends on the following:

• Oracle WebLogic Server

• Oracle Database

• If you want to use an existing schema, Identity Management - Oracle Internet Directory schema existing in the Oracle Database.

7.2.4 Procedure

Perform the following steps to configure Oracle Internet Directory with Oracle Directory Integration Platform, Oracle Directory Services Manager, and Fusion Middleware Control in a new domain:

1. Ensure that Oracle Internet Directory, Oracle Directory Integration Platform, and Oracle Directory Services Manager are installed, as described in Installation Roadmap and Installing Oracle Identity Management Using "Install and Configure" Option.

   Note:

   If you selected Install and Configure option in the Select Installation Type screen while installing Oracle Identity Management 11g Release 1 (11.1.1.6.0), as described in Installing and Configuring Oracle Identity Management 11g Release 1 (11.1.1.6.0) Software, the Select Domain screen is displayed.

   If you selected Install Software - Do Not Configure option in the Select Installation Type screen while installing Oracle Identity Management 11g Release 1 (11.1.1.6.0), as described in Installing and Configuring Oracle Identity Management 11g Release 1 (11.1.1.6.0) Software, you must now start the Oracle Identity Management Configuration Wizard. Run <ORACLE_HOME>/bin/config.sh (on UNIX) or <ORACLE_HOME>\bin\config.bat (on Windows) to start the Oracle Identity Management Configuration Wizard. The Select Domain screen is displayed.

2. On the Select Domain screen, select Create New Domain and enter the following information:

   • Enter the user name for the new domain in the User Name field.

   • Enter the user password for the new domain in the User Password field.

   • Enter the user password again in the Confirm Password field.

   • Enter a name for the new domain in the Domain Name field.

   Click Next. The Specify Installation Location screen appears.

3. Identify the Homes, Instances, and the WebLogic Server directory by referring to Identifying Installation Directories. After you enter information for each field, click Next. The Specify Security Updates screen appears.

4. Choose how you want to be notified about security issues:

   • If you want to be notified about security issues through email, enter your email address in the Email field.

   • If you want to be notified about security issues through My Oracle Support (formerly MetaLink), select the My Oracle Support option and enter your My Oracle Support Password.

   • If you do not want to be notified about security issues, leave all fields empty.

   Click Next. The Configure Components screen appears.

5. Select Oracle Internet Directory and Oracle Directory Integration Platform. The Oracle Directory Services Manager and Fusion Middleware Control management components are automatically selected for this installation.

   Ensure no other components are selected and click Next. The Configure Ports screen appears.

6. Choose how you want the Installer to configure ports:

   • Select Auto Port Configuration if you want the Installer to configure ports from a predetermined range.

   • Select Specify Ports using Configuration File if you want the Installer to configure ports using the staticports.ini file. You can click View/Edit File to update the settings in the staticports.ini file.

   Click Next. The Specify Schema Database screen appears.

7. Choose whether to use an existing schema or to create a new one using the Installer.

   Note:

   If you want to use an existing schema, it must currently reside in the database to continue with the installation. If it does not currently reside in the database, you must create it now using the Oracle Fusion Middleware Repository Creation Utility or follow the To create a new schema section mentioned below.

   Refer to "Creating Database Schema Using the Oracle Fusion Middleware Repository Creation Utility (RCU)" for more information.

   To use an existing schema 

   1. Select Use Existing Schema.

   2. Enter the database connection information in the Connect String field. The connection string must be in the form of hostname:port:servicename. For Oracle Real Application Clusters (RAC), the connection string must be in the form of hostname1:port1:instance1^hostname2:port2:instance2@servicename.

   3. Enter the password for the existing ODS schema in the Password field.

   4. Click Next.

      Note:

      If your existing ODS and ODSSM schemas have different passwords, the Specify ODSSM Password screen will appear after you click Next. Enter the password for your existing ODSSM schema and click Next.

      The Create Oracle Internet Directory screen appears.

   5. Continue the installation by going to step 8 now.

   To create a new schema 

   1. Select Create Schema.

   2. Enter the database connection information in the Connect String field. The connection string must be in the form of hostname:port:servicename. For Oracle Real Application Clusters (RAC), the connection string must be in the form of hostname1:port1:instance1^hostname2:port2:instance2@servicename.

   3. Enter the name of the database user in the User Name field. The user you identify must have DBA privileges.

      Note:

      If you are using Oracle Database 11g Release 2 (11.2) or higher version, the database user should be only 'SYS'.

   4. Enter the password for the database user in the Password field.

   5. Click Next. The Enter OID Passwords screen appears.

   6. Create a password for the new ODS schema by entering it in the ODS Schema Password field.

      Enter it again in the Confirm ODS Schema Password field.

   7. Create a password for the new ODSSM schema by entering it in the ODSSM Schema Password field.

      Enter it again in the Confirm ODSSM Schema Password field.

   8. Click Next. The Create Oracle Internet Directory screen appears.

8. Enter the following information for Oracle Internet Directory:

   • Realm: Enter the location for your realm. For example: dc=mycompany,dc=com

   • Administrator Password: Enter the password for the Oracle Internet Directory administrator.

   • Confirm Password: Enter the administrator password again.

   Click Next.

9. The Installation Summary screen appears. Verify the information on this screen. Click Configure to begin the configuration.

10. The Configuration Progress screen appears. Click Next to continue.

11. The Installation Complete screen appears. Click Save to save the configuration information to a file, and then click Finish to exit the installer.

Note:

You may see the following error message in $Instance_home/diagnostics/logs/OID/oid1/** log files after configuring Oracle Internet Directory:

"2010-02-01T07:27:42+00:00] [OID] [NOTIFICATION:16] [] [OIDLDAPD] [host:stadp47] [pid: 26444] [tid: 0] Main:: FATAL * gslsmaiaInitAudCtx * Audit struct initialization failed. Audit error code: 62005"

You can ignore this error message.

7.3 OID and OVD with ODSM in a New WebLogic Domain

This topic describes how to configure Oracle Internet Directory (OID) and Oracle Virtual Directory (OVD) with Oracle Directory Services Manager (ODSM) in a new WebLogic administration domain. It includes the following sections:

• Appropriate Deployment Environment

• Components Deployed

• Dependencies

• Procedure

7.3.1 Appropriate Deployment Environment

The configuration described in this topic is appropriate for environments that have the following conditions:

• A new WebLogic Administration Server is necessary to manage Oracle Internet Directory and Oracle Virtual Directory components.

• You want to install Oracle Internet Directory and Oracle Virtual Directory together in the same WebLogic domain, which can be extended at a later time to add new Oracle Identity Management components.

7.3.2 Components Deployed

Performing the configuration in this section deploys the following:

• WebLogic Administration Server

• Oracle Internet Directory

• Oracle Virtual Directory

• WebLogic Managed Server

• Oracle Directory Services Manager

• Fusion Middleware Control

7.3.3 Dependencies

The configuration in this section depends on the following:

• Oracle WebLogic Server

• Oracle Database

• If you want to use an existing schema, Identity Management - Oracle Internet Directory schema existing in the Oracle Database.

7.3.4 Procedure

Perform the following steps to configure Oracle Internet Directory and Oracle Virtual Directory in a new domain:

1. Ensure that Oracle Internet Directory and Oracle Virtual Directory are installed, as described in Installation Roadmap and Installing Oracle Identity Management Using "Install and Configure" Option.

   Note:

   If you selected Install and Configure option in the Select Installation Type screen while installing Oracle Identity Management 11g Release 1 (11.1.1.6.0), as described in Installing and Configuring Oracle Identity Management 11g Release 1 (11.1.1.6.0) Software, the Select Domain screen is displayed.

   If you selected Install Software - Do Not Configure option in the Select Installation Type screen while installing Oracle Identity Management 11g Release 1 (11.1.1.6.0), as described in Installing and Configuring Oracle Identity Management 11g Release 1 (11.1.1.6.0) Software, you must now start the Oracle Identity Management Configuration Wizard. Run <ORACLE_HOME>/bin/config.sh (on UNIX) or <ORACLE_HOME>\bin\config.bat (on Windows) to start the Oracle Identity Management Configuration Wizard. The Select Domain screen is displayed.

2. On the Select Domain screen, select Create New Domain and enter the following information:

   • Enter the user name for the new domain in the User Name field.

   • Enter the user password for the new domain in the User Password field.

   • Enter the user password again in the Confirm Password field.

   • Enter a name for the new domain in the Domain Name field.

   Click Next. The Specify Installation Location screen appears.

3. Identify the Homes, Instances, and the WebLogic Server directory by referring to Identifying Installation Directories.

   After you enter information for each field, click Next. The Specify Security Updates screen appears.

4. Choose how you want to be notified about security issues:

   • If you want to be notified about security issues through email, enter your email address in the Email field.

   • If you want to be notified about security issues through My Oracle Support (formerly MetaLink), select the My Oracle Support option and enter your My Oracle Support Password.

   • If you do not want to be notified about security issues, leave all fields empty.

   Click Next. The Configure Components screen appears.

5. Select Oracle Internet Directory and Oracle Virtual Directory. The Oracle Directory Services Manager and Oracle Fusion Middleware Control will be automatically selected.

   Ensure no other components are selected and click Next. The Configure Ports screen appears.

6. Choose how you want the Installer to configure ports:

   • Select Auto Port Configuration if you want the Installer to configure ports from a predetermined range.

   • Select Specify Ports using Configuration File if you want the Installer to configure ports using the staticports.ini file. You can click View/Edit File to update the settings in the staticports.ini file.

   Click Next. The Specify Oracle Virtual Directory Information screen appears.

7. Enter the following information:

   • LDAP v3 Name Space: Enter the name space for Oracle Virtual Directory. The default value is dc=us,dc=oracle,dc=com.

   • HTTP Web Gateway: Select this option to enable the Oracle Virtual Directory HTTP Web Gateway.

   • Secure: Select this option if you enabled the HTTP Web Gateway and you want to secure it using SSL.

   • Administrator User Name: Enter the user name for the Oracle Virtual Directory administrator. The default value is cn=orcladmin.

   • Password: Enter the password for the Oracle Virtual Directory administrator.

   • Confirm Password: Enter the password for the Oracle Virtual Directory administrator again.

   • Configure Administrative Server in secure mode: Select this option to secure the Oracle Virtual Directory Administrative Listener using SSL. This option is selected by default. Oracle recommends selecting this option.

   Click Next. The Specify Schema Database screen is displayed.

8. Choose whether to use an existing schema or to create a new one using the Installer.

   Note:

   If you want to use an existing schema, it must currently reside in the database to continue with the installation. If it does not currently reside in the database, you must create it now using the Oracle Fusion Middleware Repository Creation Utility or follow the To create a new schema section mentioned below.

   Refer to Creating Database Schema Using the Oracle Fusion Middleware Repository Creation Utility (RCU) for more information.

   To use an existing schema 

   1. Select Use Existing Schema.

   2. Enter the database connection information in the Connect String field. The connection string must be in the form of hostname:port:servicename. For Oracle Real Application Clusters (RAC), the connection string must be in the form of hostname1:port1:instance1^hostname2:port2:instance2@servicename.

   3. Enter the password for the existing ODS schema in the Password field.

   4. Click Next.

      Note:

      If your existing ODS and ODSSM schemas have different passwords, the Specify ODSSM Password screen will appear after you click Next. Enter the password for your existing ODSSM schema and click Next.

      The Create Oracle Internet Directory screen appears.

   5. Continue the installation by going to step 8 now.

   To create a new schema 

   1. Select Create Schema.

   2. Enter the database connection information in the Connect String field. The connection string must be in the form of hostname:port:servicename. For Oracle Real Application Clusters (RAC), the connection string must be in the form of hostname1:port1:instance1^hostname2:port2:instance2@servicename.

   3. Enter the name of the database user in the User Name field. The user you identify must have DBA privileges.

      Note:

      If you are using Oracle Database 11g Release 2 (11.2) or higher version, the database user should be only 'SYS'.

   4. Enter the password for the database user in the Password field.

   5. Click Next. The Enter OID Passwords screen appears.

   6. Create a password for the new ODS schema by entering it in the ODS Schema Password field.

      Enter it again in the Confirm ODS Schema Password field.

   7. Create a password for the new ODSSM schema by entering it in the ODSSM Schema Password field.

      Enter it again in the Confirm ODSSM Schema Password field.

   8. Click Next. The Create Oracle Internet Directory screen appears.

9. Enter the following information for Oracle Internet Directory:

   • Realm: Enter the location for your realm. For example: dc=mycompany,dc=com

   • Administrator Password: Enter the password for the Oracle Internet Directory administrator.

   • Confirm Password: Enter the administrator password again.

   Click Next.

10. The Installation Summary screen appears. Verify the information on this screen. Click Configure to begin the configuration.

11. The Configuration Progress screen appears. Click Next to continue.

12. The Installation Complete screen appears. Click Save to save the configuration information to a file, and then click Finish to exit the installer.

7.4 Only OID in an Existing WebLogic Domain

This topic describes how to configure only Oracle Internet Directory (OID) in an existing WebLogic administration domain. It includes the following sections:

• Appropriate Deployment Environment

• Components Deployed

• Dependencies

• Procedure

7.4.1 Appropriate Deployment Environment

The configuration described in this topic is appropriate for environments that have both of the following conditions:

• A WebLogic Administration Server is available to manage 11g Release 1 (11.1.1) Oracle Directory Services components and you want Oracle Internet Directory to join that domain.

• You want to install Oracle Internet Directory separately from the WebLogic Administration Server.

7.4.2 Components Deployed

Performing the configuration in this section deploys only Oracle Internet Directory.

7.4.3 Dependencies

The configuration in this section depends on the following:

• Oracle WebLogic Server

• Oracle Database

• If you want to use an existing schema, Identity Management - Oracle Internet Directory schema existing in the Oracle Database.

7.4.4 Procedure

Perform the following steps to configure only Oracle Internet Directory in an existing domain:

1. Ensure that Oracle Internet Directory is installed, as described in Installation Roadmap and Installing Oracle Identity Management Using "Install and Configure" Option.

   Note:

   If you selected Install and Configure option in the Select Installation Type screen while installing Oracle Identity Management 11g Release 1 (11.1.1.6.0), as described in Installing and Configuring Oracle Identity Management 11g Release 1 (11.1.1.6.0) Software, the Select Domain screen is displayed.

   If you selected Install Software - Do Not Configure option in the Select Installation Type screen while installing Oracle Identity Management 11g Release 1 (11.1.1.6.0), as described in Installing and Configuring Oracle Identity Management 11g Release 1 (11.1.1.6.0) Software, you must now start the Oracle Identity Management Configuration Wizard. Run <ORACLE_HOME>/bin/config.sh (on UNIX) or <ORACLE_HOME>\bin\config.bat (on Windows) to start the Oracle Identity Management Configuration Wizard. The Select Domain screen is displayed.

2. On the Select Domain screen, select Extend Existing Domain and enter the following information:

   • Enter the name of the host that contains the domain in the Host Name field.

   • Enter the Oracle WebLogic Server listen port in the Port field.

   • Enter the user name for the domain in the User Name field.

   • Enter the password for the domain user in the User Password field.

   Click Next. The Specify Installation Location screen appears.

3. Identify the Homes, Instances, and the WebLogic Server directory by referring to Identifying Installation Directories.

   Note:

   To install Oracle Identity Management components in an existing Oracle WebLogic Server administration domain, each Oracle WebLogic Server Home, Oracle Middleware Home, and Oracle Home directory in the domain must have identical directory paths and names.

   After you enter information for each field, click Next. The Specify Security Updates screen appears.

4. Choose how you want to be notified about security issues:

   • If you want to be notified about security issues through email, enter your email address in the Email field.

   • If you want to be notified about security issues through My Oracle Support (formerly MetaLink), select the My Oracle Support option and enter your My Oracle Support Password.

   • If you do not want to be notified about security issues, leave all fields empty.

   Click Next. The Configure Components screen appears.

5. Select only Oracle Internet Directory. Ensure no other components are selected and click Next. The Configure Ports screen appears.

6. Choose how you want the Installer to configure ports:

   • Select Auto Port Configuration if you want the Installer to configure ports from a predetermined range.

   • Select Specify Ports using Configuration File if you want the Installer to configure ports using the staticports.ini file. You can click View/Edit File to update the settings in the staticports.ini file.

   Click Next. The Specify Schema Database screen appears.

7. Choose whether to use an existing schema or to create a new one using the Installer.

   Note:

   If you want to use an existing schema, it must currently reside in the database to continue with the installation. If it does not currently reside in the database, you must create it now using the Oracle Fusion Middleware Repository Creation Utility or follow the To create a new schema section mentioned below.

   Refer to Creating Database Schema Using the Oracle Fusion Middleware Repository Creation Utility (RCU) for more information.

   To use an existing schema 

   1. Select Use Existing Schema.

   2. Enter the database connection information in the Connect String field. The connection string must be in the form of hostname:port:servicename. For Oracle Real Application Clusters (RAC), the connection string must be in the form of hostname1:port1:instance1^hostname2:port2:instance2@servicename.

   3. Enter the password for the existing ODS schema in the Password field.

   4. Click Next.

      Note:

      If your existing ODS and ODSSM schemas have different passwords, the Specify ODSSM Password screen will appear after you click Next. Enter the password for your existing ODSSM schema and click Next.

      The Create Oracle Internet Directory screen appears.

   5. Continue the installation by going to step 8 now.

   To create a new schema 

   1. Select Create Schema.

   2. Enter the database connection information in the Connect String field. The connection string must be in the form of hostname:port:servicename. For Oracle Real Application Clusters (RAC), the connection string must be in the form of hostname1:port1:instance1^hostname2:port2:instance2@servicename.

   3. Enter the name of the database user in the User Name field. The user you identify must have DBA privileges.

      Note:

      If you are using Oracle Database 11g Release 2 (11.2) or higher version, the database user should be only 'SYS'.

   4. Enter the password for the database user in the Password field.

   5. Click Next. The Enter OID Passwords screen appears.

   6. Create a password for the new ODS schema by entering it in the ODS Schema Password field.

      Enter it again in the Confirm ODS Schema Password field.

   7. Create a password for the new ODSSM schema by entering it in the ODSSM Schema Password field.

      Enter it again in the Confirm ODSSM Schema Password field.

   8. Click Next. The Create Oracle Internet Directory screen appears.

8. Enter the following information for Oracle Internet Directory:

   • Realm: Enter the location for your realm. For example: dc=mycompany,dc=com

   • Administrator Password: Enter the password for the Oracle Internet Directory administrator.

   • Confirm Password: Enter the administrator password again.

   Click Next.

9. The Installation Summary screen appears. Verify the information on this screen. Click Configure to begin the configuration.

10. The Configuration Progress screen appears. Click Next to continue.

11. The Installation Complete screen appears. Click Save to save the configuration information to a file, and then click Finish to exit the installer.

Note:

You may see the following error message in $Instance_home/diagnostics/logs/OID/oid1/** log files after configuring Oracle Internet Directory:

"2010-02-01T07:27:42+00:00] [OID] [NOTIFICATION:16] [] [OIDLDAPD] [host:stadp47] [pid: 26444] [tid: 0] Main:: FATAL * gslsmaiaInitAudCtx * Audit struct initialization failed. Audit error code: 62005"

You can ignore this error message.

7.5 Only OID Without a WebLogic Domain

This topic describes how to configure only Oracle Internet Directory (OID) without a WebLogic administration domain. It includes the following sections:

• Appropriate Deployment Environment

• Components Deployed

• Dependencies

• Procedure

7.5.1 Appropriate Deployment Environment

The configuration described in this topic is appropriate for environments that have both of the following conditions:

• You do not want to include Oracle Internet Directory in a WebLogic administration domain for management purposes.

• You do not want to manage Oracle Internet Directory and Oracle Directory Services Manager using Fusion Middleware Control.

7.5.2 Components Deployed

Performing the configuration in this section deploys only Oracle Internet Directory.

7.5.3 Dependencies

The configuration in this section depends on the following:

• Oracle Database

• If you want to use an existing schema, Identity Management - Oracle Internet Directory schema existing in the Oracle Database.

7.5.4 Procedure

Perform the following steps to configure only Oracle Internet Directory without a domain:

1. Ensure that Oracle Internet Directory is installed, as described in Installation Roadmap and Installing Oracle Identity Management Using "Install and Configure" Option.

   Notes:

   • Installing Oracle WebLogic Server is optional in this particular scenario. Instead, you can create the Middleware Home by following the procedure as described later in Step 3.

   • If you selected Install and Configure option in the Select Installation Type screen while installing Oracle Identity Management 11g Release 1 (11.1.1.6.0), as described in Installing and Configuring Oracle Identity Management 11g Release 1 (11.1.1.6.0) Software, the Select Domain screen is displayed.

   • If you selected Install Software - Do Not Configure option in the Select Installation Type screen while installing Oracle Identity Management 11g Release 1 (11.1.1.6.0), as described in Installing and Configuring Oracle Identity Management 11g Release 1 (11.1.1.6.0) Software, you must now start the Oracle Identity Management Configuration Wizard. Run <ORACLE_HOME>/bin/config.sh (on UNIX) or <ORACLE_HOME>\bin\config.bat (on Windows) to start the Oracle Identity Management Configuration Wizard. The Select Domain screen is displayed.

2. On the Select Domain screen, select Configure without a Domain and click Next. The Specify Installation Location screen appears.

3. Enter the following information in each field:

   • Oracle Middleware Home Location: If an Oracle Middleware Home directory already exists, enter the path to it in this field. If an Oracle Middleware Home directory does not exist, enter a path to the location where you want the Installer to create the directory that will contain the Oracle Common Home and Oracle Home directories. The Installer creates an Oracle Common Home directory and an Oracle Home directory inside the directory you identify in this field.

     The Oracle Middleware Home directory is commonly referred to as MW_HOME.

     Note:

     The Oracle Middleware Home directory is not required to contain an Oracle WebLogic Server installation.

   • Oracle Home Directory: Enter a name for the Oracle Home directory. The Installer uses the name you enter in this field to create the Oracle Home directory under the location you enter in the Oracle Middleware Home Location field. The Oracle Home directory is commonly referred to as ORACLE_HOME.

   • Oracle Instance Location: Enter the directory path to the location where you want to create the Oracle Instance directory. The Installer creates the Oracle Instance directory using the location you enter in this field and using the name you enter in the Oracle Instance Name field. You can identify any location on your system for the Oracle Instance directory—it does not have to reside inside the Oracle Middleware Home directory.

   • Oracle Instance Name: Enter a name for the Oracle Instance directory. The Installer uses the name you enter in this field to create the Oracle Instance directory at the location you specify in the Oracle Instance Location field. This directory is commonly referred to as ORACLE_INSTANCE.

   After you enter information for each field, click Next. The Specify Security Updates screen appears.

4. Choose how you want to be notified about security issues:

   • If you want to be notified about security issues through email, enter your email address in the Email field.

   • If you want to be notified about security issues through My Oracle Support (formerly MetaLink), select the My Oracle Support option and enter your My Oracle Support Password.

   • If you do not want to be notified about security issues, leave all fields empty.

   Click Next. The Configure Components screen appears.

5. On the Configure Components screen, select only Oracle Internet Directory. Ensure no other components are selected and click Next. The Configure Ports screen appears.

6. Choose how you want the Installer to configure ports:

   • Select Auto Port Configuration if you want the Installer to configure ports from a predetermined range.

   • Select Specify Ports using Configuration File if you want the Installer to configure ports using the staticports.ini file. You can click View/Edit File to update the settings in the staticports.ini file.

   Click Next. The Specify Schema Database screen appears.

7. Choose whether to use an existing schema or to create a new one using the Installer.

   Note:

   If you want to use an existing schema, it must currently reside in the database to continue with the installation. If it does not currently reside in the database, you must create it now using the Oracle Fusion Middleware Repository Creation Utility or follow the To create a new schema section mentioned below.

   Refer to Creating Database Schema Using the Oracle Fusion Middleware Repository Creation Utility (RCU) for more information.

   To use an existing schema 

   1. Select Use Existing Schema.

   2. Enter the database connection information in the Connect String field. The connection string must be in the form of hostname:port:servicename. For Oracle Real Application Clusters (RAC), the connection string must be in the form of hostname1:port1:instance1^hostname2:port2:instance2@servicename.

   3. Enter the password for the existing ODS schema in the Password field.

   4. Click Next.

      Note:

      If your existing ODS and ODSSM schemas have different passwords, the Specify ODSSM Password screen will appear after you click Next. Enter the password for your existing ODSSM schema and click Next.

      The Create Oracle Internet Directory screen appears.

   5. Continue the installation by going to step 8 now.

   To create a new schema 

   1. Select Create Schema.

   2. Enter the database connection information in the Connect String field. The connection string must be in the form of hostname:port:servicename. For Oracle Real Application Clusters (RAC), the connection string must be in the form of hostname1:port1:instance1^hostname2:port2:instance2@servicename.

   3. Enter the name of the database user in the User Name field. The user you identify must have DBA privileges.

      Note:

      If you are using Oracle Database 11g Release 2 (11.2) or higher version, the database user should be only 'SYS'.

   4. Enter the password for the database user in the Password field.

   5. Click Next. The Enter OID Passwords screen appears.

   6. Create a password for the new ODS schema by entering it in the ODS Schema Password field.

      Enter it again in the Confirm ODS Schema Password field.

   7. Create a password for the new ODSSM schema by entering it in the ODSSM Schema Password field.

      Enter it again in the Confirm ODSSM Schema Password field.

   8. Click Next. The Create Oracle Internet Directory screen appears.

8. Enter the following information for Oracle Internet Directory:

   • Realm: Enter the location for your realm. For example: dc=mycompany,dc=com

   • Administrator Password: Enter the password for the Oracle Internet Directory administrator.

   • Confirm Password: Enter the administrator password again.

   Click Next.

9. The Installation Summary screen appears. Verify the information on this screen. Click Configure to begin the configuration.

10. The Configuration Progress screen appears. Click Next to continue.

11. The Installation Complete screen appears. Click Save to save the configuration information to a file, and then click Finish to exit the installer.

Note:

• If you perform this installation and configuration, but later decide you want to manage Oracle Internet Directory using Fusion Middleware Control, you must register Oracle Internet Directory with a WebLogic Administration Server.

  Refer to the "Registering an Oracle Instance or Component with the WebLogic Server" section in the Oracle Fusion Middleware Administrator's Guide for Oracle Internet Directory for more information.

• You may see the following error message in $Instance_home/diagnostics/logs/OID/oid1/** log files after configuring Oracle Internet Directory:

  "2010-02-01T07:27:42+00:00] [OID] [NOTIFICATION:16] [] [OIDLDAPD] [host:stadp47] [pid: 26444] [tid: 0] Main:: FATAL * gslsmaiaInitAudCtx * Audit struct initialization failed. Audit error code: 62005"

  You can ignore this error message.

7.6 Verifying OID Installation

Verify the Oracle Internet Directory (OID) installation by:

• Executing the $ORACLE_INSTANCE/bin/opmnctl status -l command. For example, if Oracle Internet Directory is configured then the following result can be seen:

  Processes in Instance: asinst_1
  ---------------------------------+--------------------+---------+----------+------------+----------+-----------+------
  ias-component                    | process-type       |     pid | status   |        uid |  memused |    uptime | ports
  ---------------------------------+--------------------+---------+----------+------------+----------+-----------+------
  oid1                             | oidldapd           |   24032 | Alive    |  582907955 |   113004 |   0:00:41 | N/A
  oid1                             | oidldapd           |   24024 | Alive    |  582907954 |    56288 |   0:00:42 | N/A
  oid1                             | oidmon             |   24001 | Alive    |  582907953 |    50232 |   0:00:43 | LDAPS:3131,LDAP:3060
  EMAGENT                          | EMAGENT            |   24000 | Alive    |  582907952 |     5852 |   0:00:43 | N/A
  

• Executing the $ORACLE_HOME/bin/ldapbind command on the Oracle Internet Directory non-SSL and SSL ports. For example:

  On Non-SSL ports:

  $ORACLE_HOME/bin/ldapbind -h <hostname> -p <port> -D cn=orcladmin -w <password>

  On SSL ports:

  $ORACLE_HOME/bin/ldapbind -h <hostname> -p <port> -D cn=orcladmin -w <password> -U 1

7.7 Getting Started with OID After Installation

After installing Oracle Internet Directory (OID), refer to the "Getting Started with Oracle Internet Directory" chapter in the Oracle Fusion Middleware Administrator's Guide for Oracle Internet Directory.