How to Create a User That Has Sufficient Privileges to Use as the Monitoring Credentials for an OUD Directory Server Target in OEM 12c
Last updated on SEPTEMBER 11, 2017
Applies to:Oracle Enterprise Manager - Version 11.1 and later
Oracle Unified Directory - Version 18.104.22.168.170117 and later
Information in this document applies to any platform.
Create a user that has just enough privileges to use as the Monitoring Credentials for an OUD directory server target in OEM12c. The documentation shows an example using cn=Directory Manager. However,
we don't want to use the most powerful account for simple monitoring. If we create another root user, and if it has "Bypass ACL" privilege, it can collect all of the metric information for OEM 12c. But we don't
want to grant "Bypass ACL" to this account, because that will allow it to make changes to the data stored in our suffixes. What ACLs are needed to create a user or Root user with the minimum privileges to
gather the information for the monitoring metrics in OEM12c to monitor an OUD directory server?
The following documents both refer to using cn=Directory Manager, which is not wanted.
Installing and Using the Oracle Enterprise Manager Plug-in for OUD http://docs.oracle.com/cd/E24628_01/doc.121/e60550/install.htm#A1012444
Step-By-Step Configuration of OUD Plugin With OEMCC 12c (Oracle Enterprise Manager Cloud Control 12c) (Doc ID 1908182.1)
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms