How to Create a User That Has Sufficient Privileges to Use as the Monitoring Credentials for an OUD Directory Server Target in OEM 12c (Doc ID 2278753.1)

Last updated on JULY 13, 2017

Applies to:

Oracle Enterprise Manager - Version 11.1 and later
Oracle Unified Directory - Version 11.1.2.3.170117 and later
Information in this document applies to any platform.

Goal

Create a user that has just enough privileges to use as the Monitoring Credentials for an OUD directory server target in OEM12c. The documentation shows an example using cn=Directory Manager.  However,
we don't want to use the most powerful account for simple monitoring.  If we create another root user, and if it has "Bypass ACL" privilege, it can collect all of the metric information for OEM 12c. But we don't
want to grant "Bypass ACL" to this account, because that will allow it to make changes to the data stored in our suffixes.  What ACLs are needed to create a user or Root user with the minimum privileges to
gather the information for the monitoring metrics in OEM12c to monitor an OUD directory server?

The following documents both refer to using cn=Directory Manager, which is not wanted.

Installing and Using the Oracle Enterprise Manager Plug-in for OUD

http://docs.oracle.com/cd/E24628_01/doc.121/e60550/install.htm#A1012444

Step-By-Step Configuration of OUD Plugin With OEMCC 12c (Oracle Enterprise Manager Cloud Control 12c) (Doc ID 1908182.1)


 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms