I Configuring Adapters for Identity Virtualization
This appendix includes the following sections:
About Split Profiles
A split profile is an identity whose attributes are stored in two (or more) sources. Identity virtualization supports split profiles and querying multiple LDAP directories in a single query. So when an application must obtain attributes from more than one source directory for an identity, it uses identity virtualization with split profiles. The adapter configuration is stored in the adapters.os_xml
file, but connection parameters, such as host, port, and credentials, are obtained from the OPSS configuration.
When configuring the LDAP connection parameters, the user.create.bases
and group.create.bases
properties must correspond to the primary adapter's namespace.
See also:
Administering Oracle Virtual Directory
Parent topic: Configuring Adapters for Identity Virtualization
Configuring Split Profiles
To configure split profiles:
See also:
WebLogic Scripting Tool Command Reference for Identity and Access Management:
Parent topic: Configuring Adapters for Identity Virtualization
Implementing Split Profiles
Assume that Microsoft Active Directory is the primary authentication provider with the cn=users,dc=acme,dc=com
user base, and Oracle Internet Directory is the secondary provider with the cn=users,dc=oid,dc=com
user base.
To implement split profile with these two adapters:
See also:
WebLogic Scripting Tool Command Reference for Identity and Access Management:
Parent topic: Configuring Adapters for Identity Virtualization
Logging Identity Virtualization Library
To enable identity virtualization library logging:
Parent topic: Configuring Adapters for Identity Virtualization