My Oracle Support Banner

How to Create a User That Has Sufficient Privileges to Use as the Monitoring Credentials for an OUD Directory Server Target in OEM 12c (Doc ID 2278753.1)

Last updated on FEBRUARY 22, 2019

Applies to:

Oracle Enterprise Manager - Version 11.1 and later
Oracle Unified Directory - Version 11.1.2.3.170117 and later
Information in this document applies to any platform.

Goal

Create a user that has just enough privileges to use as the Monitoring Credentials for an OUD directory server target in OEM12c.
The documentation shows an example using cn=Directory Manager.  However, the Directory Manager account should not be used for simple monitoring. 

By creating another root user that has the "Bypass ACL" privilege, it can collect all of the metric information for OEM 12c.
Since a user account will be able to make changes to the data stored in all suffixes if given the "Bypass ACL" privilege (and that type of access for that user is not required), what ACLs are needed to create a user or Root User with the minimum privileges to gather the information to monitor an OUD directory server using OEM 12c?

The following documents both refer to using cn=Directory Manager, which is not wanted.

Oracle Enterprise Manager Cloud Control Documentation, 12c Release 5 -
Installing and Using the Oracle Enterprise Manager Plug-in for OUD

Step-By-Step Configuration of OUD Plugin With OEMCC 12c (Oracle Enterprise Manager Cloud Control 12c) (Doc ID 1908182.1)

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Goal
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.