Oracle® Fusion Middleware Deployment Planning Guide for Identity Synchronization for Windows 6.0 11g Release 1 (11.1.1.7.0) Part Number E28965-01 |
|
|
PDF · Mobi · ePub |
This guide describes how to plan and implement an Identity Synchronization for Windows system.
This book is meant for system administrators who manage user identities on various directory resources. You must understand directory technologies and be familiar with directory servers, databases, and the Lightweight Directory Access Protocol (LDAP).
Once you understand the concepts described in this guide, you will be ready to plan and deploy an Identity Synchronization for Windows solution for your particular environment.
Before trying to deploy Identity Synchronization for Windows, read the following publications:
Installation Guide for Oracle Directory Server Enterprise Edition
Release Notes for Oracle Directory Server Enterprise Edition
This documentation set explains how to use Oracle Directory Server Enterprise Edition to evaluate, design, deploy, and administer directory services. In addition, it shows how to develop client applications for Directory Server Enterprise Edition. The Oracle Fusion Middleware Directory Server Enterprise Edition Documentation Library is available at http://docs.oracle.com/cd/E29127_01/index.htm
.
The following table lists the documents that make up the Directory Server Enterprise Edition documentation set.
Document Title | Contents |
---|---|
Release Notes for |
Contains the latest information about Directory Server Enterprise Edition, including known problems. |
Evaluation Guide for |
Introduces the key features of this release. Demonstrates how these features work and what they offer in the context of a deployment that you can implement on a single system. |
Deployment Planning Guide for |
Explains how to plan and design highly available, highly scalable directory services based on Directory Server Enterprise Edition. Presents the basic concepts and principles of deployment planning and design. Discusses the solution life cycle, and provides high-level examples and strategies to use when planning solutions based on Directory Server Enterprise Edition. |
Installation Guide for |
Explains how to install the Directory Server Enterprise Edition software. Shows how to configure the installed software and verify the configured software. |
Upgrade and Migration Guide for |
Provides instructions for upgrading versions 11.1.1.3, 7.x, and 6 installations, and instructions for migrating version 5.2 installations. |
Administrator's Guide for |
Provides command-line instructions for administering Directory Server Enterprise Edition. For hints and instructions about using the Directory Service Control Center, DSCC, to administer Directory Server Enterprise Edition, see the online help provided in DSCC. |
Introduces technical and conceptual foundations of Directory Server Enterprise Edition. Describes its components, architecture, processes, and features. |
|
Man Page Reference for |
Describes the command-line tools, schema objects, and other public interfaces that are available through Directory Server Enterprise Edition. Individual sections of this document can be installed as online manual pages. |
Developer's Guide for |
Shows how to develop directory client applications with the tools and APIs that are provided as part of Directory Server Enterprise Edition. |
Troubleshooting for |
Provides information for defining the scope of the problem, gathering data, and troubleshooting the problem areas by using various tools. |
Provides the latest information for installing, migrating, and upgrading Identity Synchronization for Windows 6.0 SP1. |
|
Deployment Planning Guide for |
Provides general guidelines and best practices for planning and deploying Identity Synchronization for Windows. |
Installation and Configuration Guide for |
Describes how to install and configure Identity Synchronization for Windows. |
For an introduction to Directory Server Enterprise Edition, review the following documents in the order in which they are listed in the following figure.
The SLAMD Distributed Load Generation Engine is a Java application that is designed to stress test and analyze the performance of network-based applications. It was originally developed by Sun Microsystems, Inc. to benchmark and analyze the performance of LDAP directory servers. SLAMD is available as an open source application under the Sun Public License, an OSI-approved open source license. To obtain information about SLAMD, go to http://www.slamd.com/
. SLAMD is also available as a java.net project. See https://slamd.dev.java.net/
.
Java Naming and Directory Interface (JNDI) technology supports accessing the Directory Server using LDAP and DSML v2 from Java applications. For information about JNDI, see http://java.sun.com/products/jndi/
. The JNDI Tutorial contains detailed descriptions and examples of how to use JNDI. This tutorial is at http://java.sun.com/products/jndi/tutorial/
.
Directory Server Enterprise Edition can be licensed as a standalone product, as a component of Sun Java Enterprise System, as part of a suite of Sun products, such as the Sun Java Identity Management Suite, or as an add-on package to other software products from Sun. Java Enterprise System is a software infrastructure that supports enterprise applications distributed across a network or Internet environment. If Directory Server Enterprise Edition was licensed as a component of Java Enterprise System, you should be familiar with the system documentation at http://docs.sun.com/coll/1286.3
.
Identity Synchronization for Windows uses Message Queue with a restricted license. Message Queue documentation is available at http://docs.sun.com/coll/1307.2
.
Identity Synchronization for Windows works with Microsoft Windows password policies.
Information about password policies for Windows 2003 is available in the Microsoft documentation (http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/directory/activedirectory/stepbystep/strngpw.mspx
) online.
Information about the Microsoft Certificate Services Enterprise Root certificate authority is available in the Microsoft support documentation (http://support.microsoft.com/default.aspx?scid=kb;en-us;247078
) online.
Information about configuring LDAP over SSL on Microsoft systems is available in the Microsoft support documentation (http://support.microsoft.com/default.aspx?scid=kb;en-us;321051
) online.
Directory Server Enterprise Edition does not provide any files that you can redistribute.
This section explains the default paths used in the documentation, and gives the locations of commands on different operating systems and deployment types.
The table in this section describes the default paths that are used in this document. For complete descriptions of the files installed, see the following product documentation.
The table in this section provides locations for commands that are used in Directory Server Enterprise Edition documentation. To learn more about each of the commands, see the relevant man pages.
Command | Java ES, Native Package Distribution | Zip Distribution |
---|---|---|
|
Solaris -
|
Solaris -
|
Red Hat -
|
Red Hat, HP-UX -
|
|
Windows -
|
Windows -
|
|
|
Solaris -
|
|
Red Hat -
|
||
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
dsee_deploy |
Not provided |
|
|
|
|
|
|
|
|
|
|
Not provided |
At the root of the unzipped zip distribution |
|
|
|
|
ns-accountstatus |
|
|
ns-activate |
|
|
ns-inactivate |
|
|
|
|
|
schema_push |
|
|
|
Solaris, Linux -
|
This command pertains only to DSCC when it is installed using native packages distribution. |
Windows -
|
||
|
Solaris, Linux -
|
This command pertains only to DSCC when it is installed using native packages distribution. |
Windows -
|
The following table describes the typographic changes that are used in this book.
Typeface | Meaning | Example |
---|---|---|
|
The names of commands, files, and directories, and onscreen computer output |
Edit your Use
|
|
What you type, contrasted with onscreen computer output |
|
AaBbCc123 |
A placeholder to be replaced with a real name or value |
The command to remove a file is |
AaBbCc123 |
Book titles, new terms, and terms to be emphasized (note that some emphasized items appear bold online) |
Read Chapter 6 in the User's Guide. A cache is a copy that is stored locally. Do not save the file. |
The following table shows default system prompts and superuser prompts.
Shell | Prompt |
---|---|
C shell on UNIX and Linux systems |
|
C shell superuser on UNIX and Linux systems |
|
Bourne shell and Korn shell on UNIX and Linux systems |
|
Bourne shell and Korn shell superuser on UNIX and Linux systems |
|
Microsoft Windows command line |
|
The following table explains symbols that might be used in this book.
Symbol | Description | Example | Meaning |
---|---|---|---|
|
Contains optional arguments and command options. |
|
The |
|
Contains a set of choices for a required command option. |
|
The |
|
Indicates a variable reference. |
|
References the value of the |
- |
Joins simultaneous multiple keystrokes. |
Control-A |
Press the Control key while you press the A key. |
+ |
Joins consecutive multiple keystrokes. |
Ctrl+A+N |
Press the Control key, release it, and then press the subsequent keys. |
> |
Indicates menu item selection in a graphical user interface. |
File > New > Templates |
From the File menu, choose New. From the New submenu, choose Templates. |
For information about Oracle's commitment to accessibility, visit the Oracle Accessibility Program website at http://www.oracle.com/pls/topic/lookup?ctx=acc&id=docacc
.
Access to Oracle Support
Oracle customers have access to electronic support through My Oracle Support. For information, visit http://www.oracle.com/pls/topic/lookup?ctx=acc&id=info
or visit http://www.oracle.com/pls/topic/lookup?ctx=acc&id=trs
if you are hearing impaired.