The below post explains the steps to add, view and delete ACI’s in ODSEE. The directoy server access control (ACI) overview is explained here
ADD, VIEW and DELETE ACI’s in ODSEE
To Add an Aci
create an ldif file add_aci.ldif with the aci details to be created
Directory Server Access Control
Directory Server Access control instructions (ACIs) is to define the permission granted to users on the directory. You can allow/deny users to perform actions in the directory by defining directory server access control instructions.
ldap_search Administrative limit exceeded
While performing ldap search on ODSEE ldap server,if you are getting the error ldap_search: Administrative limit exceeded, then follow the below steps to fix this issue
The following attributes in the ldap server are used to restrict the searching in the ldap server. Continue reading
unable to bind securely on localhost 389
I got the error “unable to bind securely on localhost 389″ error while executing the dsconf enable repl comand on ODSEE
dsconf enable-repl -h localhost -p 1389 consumer dc=example,dc=com
This post explains the steps to restore a deleted user from Oracle Internet Directory. The delete user will be available if the garbage collection is not executed and the tombstoned entry is not purged.
Steps to restore a deleted user from Oracle Internet Directory
To search the deleted user, execute the below ldapsearch command.
Garbage Collection in Oracle Internet Directory refers deleting any unwanted data from directory server. This unwanted data will fill up the disk space and will decrease the performance of Oracle Internet Directory server. Thus the garbage collection helps to restore the space occupied by this unwanted data and also helps to improve performance.
The Oracle Internet Directory garbage collection framework provides a default set of garbage collectors which helps to perform garbage collection in Oracle Internet Directory. We can edit or modify the default configuration according to our requirement.
This post explains the steps for fixing the OID startup issue - Unable to start OID- ORA-28002, ORA-28002: the password will expire within 7 days . While starting the OID server using the OPMN tool the following error was throwing in the OIDmonitor logs.
Guardian: Connecting to database, connect string is oiddb
Guardian: [gsdsiConnect]ORA-28002, ORA-28002: the password will expire within 7 days
Guardian: [oidmon]: Unable to connect to database, will retry again after 10 sec
Oracle Unified Directory useful links
Oracle Unified directory Overview is available here
Administrator’s Guide for Oracle Unified Directory 11g Release 2 (11.1.2) is available here
This post explains the steps for starting and stopping Oracle Unified Directory 11GR2 PS2 on Linux server.
Start OUD server
Navigate to OUD-instnace/OUD/bin directory
Oracle Unified Directory (OUD) is a new directory product from Oracle. This post explains the steps to install and configure Oracle Unified Directory 11GR2 PS2 (188.8.131.52) as directory server.
Oracle Unified Directory server is capable of storage, proxy and replication. OUD is easy to install, configure, manage and monitor.
OUD comes with three main components.
Directory Server: Provides the LDAP functionality.
Proxy Server: Can be used for proxy LDAP requests.
Replication Server: Can be used for replication between OUD Servers or from ODSEE server.
Oracle Unified Directory 11GR2 PS2 overview is available here: Continue reading